Professional Documents
Culture Documents
Cape Card Payments Terminal Management Message Usage Guide: 8.0 2nd March 2020
Cape Card Payments Terminal Management Message Usage Guide: 8.0 2nd March 2020
4 CAPE
5 Card Payments
6 Terminal Management
7 Message Usage Guide
8
9
10
11
12
13
14 Version 8.0
15 2nd March 2020
16
2 This information is protected by international intellectual property laws and its use is governed by the applicable End-User license
3
4 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
17
18 TABLE OF CONTENTS
19
20 1 Introduction.................................................................................................................................................... 7
21 1.1 Purpose of the Document...................................................................................................................... 7
22 1.2 References............................................................................................................................................. 7
23 1.3 Terms and Definitions............................................................................................................................ 7
24 1.4 Conventions........................................................................................................................................... 8
25 1.5 What’s new in the edition 87.................................................................................................................. 8
26 1.6 Principles............................................................................................................................................... 9
27 1.6.1 Number encoding........................................................................................................................ 9
28 1.6.2 Initiating Party.............................................................................................................................. 9
29 1.6.3 DateAndTime.............................................................................................................................. 9
30 1.6.4 Encoding of Certificate................................................................................................................ 9
31 1.6.5 Encoding of Boolean value........................................................................................................ 12
32 2 Common nexo TMS message principles..................................................................................................... 13
33 2.1 CryptographicKey................................................................................................................................ 13
34 2.2 NetworkParameters............................................................................................................................. 14
35 2.3 PointOfInteractionComponent.............................................................................................................. 15
36 2.3.1 Structure.................................................................................................................................... 15
37 2.3.2 Business Rules Validation......................................................................................................... 18
38 3 StatusReport (catm.001).............................................................................................................................. 19
39 3.1 Message Usage................................................................................................................................... 19
40 3.2 Message Preparation........................................................................................................................... 27
41 3.3 Message Processing............................................................................................................................ 28
42 3.4 Business Rules Validation.................................................................................................................... 28
43 4 ManagementPlanReplacement (catm.002).................................................................................................. 30
44 4.1 Message Usage................................................................................................................................... 30
45 4.2 Message Preparation........................................................................................................................... 38
46 4.3 Message Processing............................................................................................................................ 38
47 4.4 Execution of the Management Plan..................................................................................................... 42
48 4.4.1 One-Time Call to the Maintenance Example.............................................................................43
49 4.4.2 Cyclic Call and Acquirer Parameters Download Examples......................................................43
50 4.4.3 Cyclic Call after an Acquirer Parameters Download Examples.................................................45
51 4.4.4 Sequence of Parameters Downloads Example.........................................................................46
52 4.4.5 Sequence of Upload action Example.........................................................................................46
53 4.5 Error Handling during Management Plan Execution............................................................................47
54 4.6 Business Rules Validation.................................................................................................................... 47
55 5 AcceptorConfigurationUpdate (catm.003).................................................................................................... 50
5 Page ii
6 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
7 Page iii
8 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
9 Page iv
10 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
131 Figures
132
133 Figure 1 : StatusReport with no change on the ManagementPlan..................................................................46
134 Figure 2 : StatusReport with change on ManagementPlan and AcceptorConfigurationUpdate......................46
135 Figure 3 Parameters management with multiple TM......................................................................................72
136 Figure 4 Parameters lifecycle on POI............................................................................................................. 88
137 Figure 5 Parameters lifecycle on TMS............................................................................................................ 90
138 Figure 6: Rejection of a TMS message........................................................................................................... 91
139 Figure 7 One POI multiple Identifications........................................................................................................ 98
140 Figure 8 POI identification with delegation...................................................................................................... 99
141 Figure 9 Creation of Key Download delegation............................................................................................. 101
142 Figure 10 Creation of Parameters Download delegation..............................................................................105
143 Figure 11 AcquirerParameters download delegation....................................................................................110
144 Figure 12 ApplicationParameters download delegation................................................................................112
145 Figure 13 Untargeted delegation.................................................................................................................. 117
146 Figure 14 Distributed delegation................................................................................................................... 119
147 Figure 15: TMS messages transferred as message exchanges...................................................................144
148 Figure 16: TMS messages transferred as files.............................................................................................147
149 Figure 17: TMS messages transferred as both messages and file...............................................................150
150 Figure 18: The FTP Model............................................................................................................................ 152
151 Figure 19: FTP Server Directory Structure for TMS......................................................................................154
152
11 Page v
12 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
153 1 Introduction
154 1.1 Purpose of the Document
155 The present document describes how to use the messages of the nexo Terminal Management Protocol
156 described in the document "Card Payment – Terminal Management, Message Definition Report" [CAPE
157 TMS MDR].
158
13 Page 6
14 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
190
15 Page 7
16 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
17 Page 8
18 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
223
19 Page 9
20 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
265 nXW8QtVUgYTSD14Mi8vElk+SDKgOe/
266 dtHoKPgjI0ppG4cWo9djolyEq9BYnaYtj1glJyGYVJ+rngVtKhB7l6ozL+5zVlZXEom/DGYiQes/DG9xnm/
267 CWliKycp5iZ9M3LI/
268 E9opQv+VSIUuu1qVu36zXjIodfdIOczp3B1ywiReUowiQ4pkLCOUAbSfBXpdsJgtFxhq8JqMsUIsrFTgeAVjRfd
269 lSH1Nolc/UeYgSPk57NF/E5uE/EWayNbtqgU8NFjpnJ1GoYC23N/zhhDmj07TCtzW+iTC634CMPNo=</Cert>
270 refers to the following ASN1 data elements
271 308203A33082028BA003020102020A2ABC40F4D482F5EBD436300D06092A864886F70D01010B050030
272 3F310B300906035504061302555331153013060355040A130C545233342053616D706C657331193017060
273 35504031310545233342053616D706C6520526F6F74301E170D3137313030393134353030385A170D323
274 1313131373134353030385A304F310B300906035504061302555331153013060355040A0C0C5452333420
275 53616D706C6573310D300B060355040B0C046E65786F311A301806035504030C11545233342053616D70
276 6C65204B5244203130820122300D06092A864886F70D01010105000382010F003082010A0282010100D7
277 B5AD2D8A78D4D7F475ACADD484F1596E07123FD1EAB42B3CB43B299C21FE6BF4C51130F48FFD688
278 FA4E2813CD1E193A3D8AC2BC95C476BD92D2E3939D43D8976187A5C9AA244CE6695AA8085B4947E
279 416C1A78350E1DF941EF7FAE974EFA489711E2CAA3425630ADB2547EB08ECAA2701B5FA6FD791638
280 406CCD4918C06A60578B48FA7AC2D445A1C1AF17937FFAE4868D9655D91EDD7D0872588F690383AE
281 04C63A173409009135A260BABB0DE586EABEC78BEC1B31FA8090609DE1B96900ABB0CD8F6B268B86
282 823F823AB8A8AD8CECD2B57825F566A65E271390227D3C114D69A7D4FF472D9330B7E2A934D7179B
283 6E3622B68AB6F0EB5A8419597D0BC9710203010001A3819030818D301D0603551D0E0416041489934E
284 8822A878BC24A705DC0F817A5028EB208430510603551D23044A3048A143A441303F310B30090603550
285 4061302555331153013060355040A130C545233342053616D706C65733119301706035504031310545233
286 342053616D706C6520526F6F7482010030090603551D1304023000300E0603551D0F0101FF0404030207
287 80300D06092A864886F70D01010B050003820101005E480DA95F57DF5181ABD3861A5B8926EB6603C3
288 D166224BE3ED59681782E1D560E270D675D6F10B55520613483D78322F2F12593E4832A039EFDDB47
289 A0A3E08C8D29A46E1C5A8F5D8E897212AF41627698B63D60949C8661527EAE7815B4A841EE5EA8CC
290 BFB9CD59595C4A26FC31988907ACFC31BDC679BF0969622B2729E6267D3372C8FC4F68A50BFE5522
291 14BAED6A56EDFACD78C8A1D7DD20E733A77075CB0891794A30890E2990B08E5006D27C15E976C260
292 B45C61ABC26A32C508B2B15381E0158D17DD9521F536895CFD47988123E4E7B345FC4E6E13F1166B2
293 35BB6A814F0D163A672751A8602DB737FCE18439A3D3B4C2B735BE8930BADF808C3CDA
294 Which correspond to the following certificate
295 Certificate:
296 Data:
297 Version: 3 (0x2)
298 Serial Number:
299 2a:bc:40:f4:d4:82:f5:eb:d4:36
300 Signature Algorithm: sha256WithRSAEncryption
301 Issuer: C = US, O = TR34 Samples, CN = TR34 Sample Root
302 Validity
303 Not Before: Oct 9 14:50:08 2017 GMT
304 Not After : Nov 17 14:50:08 2021 GMT
305 Subject: C = US, O = TR34 Samples, OU = nexo, CN = TR34 Sample KRD 1
306 Subject Public Key Info:
307 Public Key Algorithm: rsaEncryption
308 Public-Key: (2048 bit)
309 Modulus:
310 00:d7:b5:ad:2d:8a:78:d4:d7:f4:75:ac:ad:d4:84:
311 f1:59:6e:07:12:3f:d1:ea:b4:2b:3c:b4:3b:29:9c:
21 Page 10
22 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
312 21:fe:6b:f4:c5:11:30:f4:8f:fd:68:8f:a4:e2:81:
313 3c:d1:e1:93:a3:d8:ac:2b:c9:5c:47:6b:d9:2d:2e:
314 39:39:d4:3d:89:76:18:7a:5c:9a:a2:44:ce:66:95:
315 aa:80:85:b4:94:7e:41:6c:1a:78:35:0e:1d:f9:41:
316 ef:7f:ae:97:4e:fa:48:97:11:e2:ca:a3:42:56:30:
317 ad:b2:54:7e:b0:8e:ca:a2:70:1b:5f:a6:fd:79:16:
318 38:40:6c:cd:49:18:c0:6a:60:57:8b:48:fa:7a:c2:
319 d4:45:a1:c1:af:17:93:7f:fa:e4:86:8d:96:55:d9:
320 1e:dd:7d:08:72:58:8f:69:03:83:ae:04:c6:3a:17:
321 34:09:00:91:35:a2:60:ba:bb:0d:e5:86:ea:be:c7:
322 8b:ec:1b:31:fa:80:90:60:9d:e1:b9:69:00:ab:b0:
323 cd:8f:6b:26:8b:86:82:3f:82:3a:b8:a8:ad:8c:ec:
324 d2:b5:78:25:f5:66:a6:5e:27:13:90:22:7d:3c:11:
325 4d:69:a7:d4:ff:47:2d:93:30:b7:e2:a9:34:d7:17:
326 9b:6e:36:22:b6:8a:b6:f0:eb:5a:84:19:59:7d:0b:
327 c9:71
328 Exponent: 65537 (0x10001)
329 X509v3 extensions:
330 X509v3 Subject Key Identifier:
331 89:93:4E:88:22:A8:78:BC:24:A7:05:DC:0F:81:7A:50:28:EB:20:84
332 X509v3 Authority Key Identifier:
333 DirName:/C=US/O=TR34 Samples/CN=TR34 Sample Root
334 serial:00
335
336 X509v3 Basic Constraints:
337 CA:FALSE
338 X509v3 Key Usage: critical
339 Digital Signature
340 Signature Algorithm: sha256WithRSAEncryption
341 5e:48:0d:a9:5f:57:df:51:81:ab:d3:86:1a:5b:89:26:eb:66:
342 03:c3:d1:66:22:4b:e3:ed:59:68:17:82:e1:d5:60:e2:70:d6:
343 75:d6:f1:0b:55:52:06:13:48:3d:78:32:2f:2f:12:59:3e:48:
344 32:a0:39:ef:dd:b4:7a:0a:3e:08:c8:d2:9a:46:e1:c5:a8:f5:
345 d8:e8:97:21:2a:f4:16:27:69:8b:63:d6:09:49:c8:66:15:27:
346 ea:e7:81:5b:4a:84:1e:e5:ea:8c:cb:fb:9c:d5:95:95:c4:a2:
347 6f:c3:19:88:90:7a:cf:c3:1b:dc:67:9b:f0:96:96:22:b2:72:
348 9e:62:67:d3:37:2c:8f:c4:f6:8a:50:bf:e5:52:21:4b:ae:d6:
349 a5:6e:df:ac:d7:8c:8a:1d:7d:d2:0e:73:3a:77:07:5c:b0:89:
23 Page 11
24 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
350 17:94:a3:08:90:e2:99:0b:08:e5:00:6d:27:c1:5e:97:6c:26:
351 0b:45:c6:1a:bc:26:a3:2c:50:8b:2b:15:38:1e:01:58:d1:7d:
352 d9:52:1f:53:68:95:cf:d4:79:88:12:3e:4e:7b:34:5f:c4:e6:
353 e1:3f:11:66:b2:35:bb:6a:81:4f:0d:16:3a:67:27:51:a8:60:
354 2d:b7:37:fc:e1:84:39:a3:d3:b4:c2:b7:35:be:89:30:ba:df:
355 80:8c:3c:da
356
357
358
25 Page 12
26 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
27 Page 13
28 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
Information
2 Name [1..1 <Nm>::Max70Text
]
2 Value [0..1 <Val>::Max140Text
]
388
389
29 Page 14
30 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
390
<Adr>
NetworkType [1..1 Type of communication network. Allowed
] values:
"InternetProtocol" A transport protocol
using an IP network.
2 "PublicTelephone" A transport protocol
using Public Switched Telephone Network
(PSTN).
<NtwkTp>::NetworkType1Code
AddressValue [1..1 Value of the address:
]
The value of an internet protocol address
contains the IP address or the DNS (Domain
Name Server) address, followed by the
character ':' and the TCP port number if the
2 default port is not used.
The value of a public telephone address
contains the phone number with possible
prefix and extensions.
<AdrVal>::Max70Text
UserName [0..1 Username for identification of the POI e.g. to
] login into a server
1
<UsrNm>::Max35Text
AccessCode [0..1 Password for authentication of the POI e.g. to
] login into a server
1
<AccsCd>::Max35Binary
31 Page 15
32 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
<SvrCertIdr>::Max140Binary
ClientCertificate [0..*] X.509 Certificate required to authenticate the
client.
1
<ClntCert>::Max10KBinary
SecurityProfile [0..1 Identification of the set of security elements to
] access the host.
1
<SctyPrfl>::Max35Text
397
398
33 Page 16
34 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
399
<Tp>::POIComponentType5Code
1 SubTypeInformation [0..1 Confi SubTypeInformation provide free additional
] g information regarding the POIComponent.
For instance, it may identifies a subtype of
Device (e.g PRINTER, ICC Reader, etc).
<SubTpInf>::Max70Text
Identification [1..1 C1 Identification of the POI component.
1 ]
<Id>
ItemNumber [0..1 Appli Hierarchical identification of a component
] inside all the component of the POI. It is
composed of all item numbers of the upper
level components, separated by the '.'
character, ended by the item number of the
current component:
Hardware: unique identification of a
hardware component inside
the POI system.
Software: unique identification of the
software component inside
the main hardware component
executing the software.
Parameters: identify the hardware or
software component using
these parameters.
<ItmNb>::Max35Text
35 Page 17
36 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
<PrvdrId>::Max35Text
Identification [0..1 Appli Identification of the POI component assigned
] by the provider:
Hardware: identify the model2.
Software: identify the software product.
Parameters: identify the set of parameters.
<Id>::Max35Text
SerialNumber [0..1 Appli Serial number of the component:
]
Hardware: identify the physical
component.
<SrlNb>::Max35Text
Status [0..1 Status of the POI component.
]
<Sts>
VersionNumber [0..1 Current version of component that might
] include the release number.
Hardware: version of the model (optional).
Software: software version (optional).
Parameters: parameters version
(mandatory).
<VrsnNb>::Max256Text
39 Page 18
40 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
<Sts>::POIComponentStatus1Code
ExpiryDate [0..1 Expiration date of the component.
]
<XpryDt>::ISODate
StandardCompliance [0..*] Identification of the standard or specification
for which the component complies with.
<StdCmplc>
Identification [1..1 Identification of the standard.
]
<Id>::Max35Text
Version [1..1 Version of the standard.
]
<Vrsn>::Max35Text
Issuer [1..1 Issuer of the standard.
]
<Issr>::Max35Text
Characteristics [0..1 Characteristics of the Hardware or
] SecurityParameters POI component.
<Chrtcs>
Memory [0..*] Memory characteristics of the Hardware
component.
<Mmry>
Identification [1..1 Identification or name of the memory.
]
<Id>::Max35Text
TotalSize [1..1 Total size of the memory unit.
]
<TtlSz>::DecimalNumber
FreeSize [1..1 Total size of the available memory.
]
<FreeSz>::DecimalNumber
41 Page 19
42 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
<Unit>::MemoryUnit1Code
Communication [0..*] Low level communication of the hardware or
software component toward another
component or an external entity.
<Com>
Communication- [1..1 Type of communication.
Type ]
.
<ComTp>::POICommunicationType2Code
RemoteParty [1..*] Entity that communicate with the current
component, using this communication device.
Acquirer Bank of the Merchant providing
goods and services.
IntermediaryAgent Party acting on
behalf of other parties to
process or forward data to
other parties.
TerminalManager Responsible for one
or several maintenance
functions of a card
payment acceptance
terminal.
SaleSystem Sale system.
POIComponent Other component of the
point of interaction.
<RmotPty>::PartyType7Code
Active [1..1 Flag indicating whether the communication is
] activated.
<Actv>::TrueFalseIndicator
SecurityAccessModules [0..1 Number of security access modules (SAM).
]
<SctyAccsMdls>::Number
SubscriberIdentity- [0..1 Number of subscriber identity modules (SIM).
Modules ]
<SbcbrIdntyMdls>::Number
2 SecurityElement [0..*] Cf chapter dedicated to CryptographicKey
43 Page 20
44 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
<SctyElmt>
Assessment [0..*] Assessments for the Hardware or Software
POI component.
<Assmnt>
Type [1..1 Type of assessment of the component.
] Evaluation Evaluation by a laboratory or a
tool.
Certification Certification number delivered
by a certification body.
Approval Approval number delivered by an
approval centre.
<Tp>::POIComponentAssessment1Code
Assigner [1..*] Body which has delivered the assessment.
<Assgnr>::Max35Text
DeliveryDate [0..1 Date when the assessment has been
] delivered.
<DlvryDt>::ISODateTime
ExpirationDate [0..1 Date when the assessment will expire.
]
<XprtnDt>::ISODateTime
Number [1..1 Unique assessment number for the
] component.
<Nb>::Max35Text
409
416
417
418
45 Page 21
46 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
<XchgId>::Number
47 Page 22
48 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
<CreDtTm>::ISODateTime
InitiatingParty [1..1 Identification of the initiator of the message
] exchange or the file transfer. Content is
bilaterally agreed between InitiatingParty and
2 RecipientParty.
<InitgPty>
Identification [1..1 C5 Unambiguous identification of the Initiator of
] the file or the message by the recipient.
<Id>::Max35Text
Type [0..1 Default: "OriginatingPOI"
3 ]
<Tp>::PartyType5Code
Issuer [0..1 Appli The party assigning the Identification.
3 ]
<Issr>::PartyType6Code
Country [0..1 Appli Country of the InitiatingParty (ISO 3166-1
] alpha-2 or alpha-3).
3
<Ctry>::Min2Max3AlphaText
ShortName [0..1 Appli In case of a digital signature, this element
] may contain the identification of the
3 InitiatingParty certificate (Subject).
<ShrtNm>::Max35Text
RecipientParty [0..1 Appli Identification of the recipient of the message
] exchange or the file transfer. Structure and
content is bilaterally agreed between
2 InitiatingParty and RecipientParty.
<RcptPty>
Identification [1..1 <Id>::Max35Text
3
]
Type [0..1 * Type of RecipientParty
]
Allowed values: "MasterTerminalManager",
3 "TerminalManager"
<Tp>::PartyType5Code
Issuer [0..1 Appli <Issr>::PartyType6Code
3
]
49 Page 23
50 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
<RmotAccs>
StatusReport [1..1 StatusReport message body.
1 ]
<StsRpt>
POIIdentification [1..1 Identification of the POI terminal or POI
] system sending the message.
2
<POIId>
Identification [1..1 C5 <Id>::Max35Text
3
]
Type [0..1 * Default and allowed value "OriginatingPOI"
3 ]
<Tp>::PartyType5Code
Issuer [0..1 Appli * Allowed values: "MasterTerminalManager",
] "TerminalManager", "Merchant", "Acquirer"
3 and "IntermediaryAgent"
<Issr>::PartyType6Code
Country [0..1 Appli Country of the POI (ISO 3166-1 alpha-2 or
] alpha-3).
3
<Ctry>::Min2Max3AlphaText
ShortName [0..1 Appli Name of the POI assigned by the TMS.
3 ]
<ShrtNm>::Max35Text
2 InitiatingTrigger [0..1 Define the actor on the initiative of the Status
] Report and the trigger context
<InitgTrggr>
3 TriggerSource [1..1 Actor who trigger the Status Report
]
<TrggrSrc>::PartyType5Code
3 SourceIdentification [1..1 Id of the trigger source
]
51 Page 24
52 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
<AddtlInf>::Max70Text
TerminalManagerIdentification [1..1 <TermnlMgrId>
2
]
Identification [1..1 Appli <Id>::Max35Text
3
]
Type [0..1 * Allowed values: "MasterTerminalManager" or
] "TerminalManager".
3
<Tp>::PartyType5Code
Issuer [0..1 Appli * Issuer of identification, not used
3 ]
<Issr>::PartyType6Code
Country [0..1 Appli Country of the Termminal Manager (ISO
] 3166-1 alpha-2 or alpha-3).
3
<Ctry>::Min2Max3AlphaText
ShortName [0..1 Appli Name of the TMS assigned by the MTM or
] TM.
3
<ShrtNm>::Max35Text
DataSet [1..1 <DataSet>
2
]
Identification [1..1 Identification of the Data set (class of file)
3 ]
<Id>
Name [0..1 * Name of the status report; not used
4 ]
<Nm>::Max256Text
Type [1..1 * Allowed value: "StatusReport"
4 ]
<Tp>::DataSetCategory12Code
Version [0..1 * Version of the status report; not used
4 ]
<Vrsn>::Max256Text
CreationDateTime [0..1 * Date and time of the creation of the status
] report. Time accuracy has to be at least in
seconds. This data element is mandatory for
4 a StatusReport
<CreDtTm>::ISODateTime
53 Page 25
54 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
<POICpblties>
[0..*] Appli Capabilities defining the physical components
CardReadingCapabilities of the POI.
<CardRdngCpblties>::CardDataReading6Co
de
Cardholder- [0..*] Appli List of methods supported by the POI to
VerificationCapabilities identify the cardholder.
<CrdhldrVrfctnCpblties>::CardholderVerificati
onCapability4Code
PINLength- [0..1 Maximum number of digits the POI is able to
Capabilities ] accept when the cardholder enters its PIN.
<PINLngthCpblties>::PositiveNumber
[0..1 Maximum number of characters of the
ApprovalCodeLength ] approval code the POI is able to manage.
<ApprvlCdLngth>::PositiveNumber
[0..1 Maximum data length in bytes that a card
MaxScriptLength ] issuer can return to the ICC at the terminal.
<MxScrptLngth>::PositiveNumber
[0..1 default "False".
CardCaptureCapable ]
True if the POI is able to capture card.
<CardCaptrCpbl>::TrueFalseIndicator
[0..1 Appli Capability of the POI to go on-line and store
OnLineCapabilities ] the transaction.
5
<OnLineCpblties>::OnLineCapability1Code
[0..*] Appli Capabilities of the terminal to display or print
MessageCapabilities message to the cardholder and the merchant.
It correspond to the ISO 8583 field number
5 22-11 for the version 93, and field number 27-
6 for the version 2003.
<MsgCpblties>
55 Page 26
56 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
<NbOfLines>::Number
[0..1 Appli Number
LineWidth ]
6 Number of columns of the display or printer.
<LineWidth>::Number
[0..*] Appli LanguageCode
AvailableLanguage
Available language for the messages.
6 Reference ISO 639-1 (alpha-2) et ISO 639-2
(alpha-3).
<AvlblLang>::LanguageCode
POIComponent [0..*] Appli C3 Used to inform the Terminal Manager about:
Confi - the hardware components of the POI.
g
- the software components of the POI.
- the installed version of the parameters.
4 It may also contain some Sale Components
according to configuration.
<POICmpnt>
AttendanceContext [0..1 Appli Attended: an attendant is present and can
] survey the financial transaction (face to face).
SemiAttended: one attendant present for
4 several POIs.
Unattended: an attendant is not present
<AttndncCntxt>::AttendanceContext1Code
POIDateTime [1..1 Appli Information used by the TMS to detect a
] discrepancy of the real time clock used in the
4 POI terminal
<POIDtTm>::ISODateTime
57 Page 27
58 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
<DataSetReqrd>
[1..1 It contains the data elements and the values
Identification ] of the related Action.DataSetIdentification
5 requesting the transfer of data set.
<Id>
[0..1 Action.DataSetIdentification.Name of the
Name ] related management plan action, if present.
<Nm>::Max256Text
59 Page 28
60 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
ManagementPlanRepla
cement message is
requested by the
StatusReport message.
"MerchantParameters": an
AcceptorConfigurationU
pdate message
containing only the
merchant parameters is
requested by the
StatusReport message.
"Parameters": an
AcceptorConfigurationU
pdate message is
requested by the
StatusReport message.
Content of the
AcceptorConfigurationU
pdate message
determines the types of
parameters to update.
"SecurityParameters": an
AcceptorConfigurationU
pdate message
containing only the
security parameters is
requested by the
StatusReport message.
"TerminalParameters": an
AcceptorConfigurationU
pdate message
containing only the
terminal parameters is
61 Page 29
62 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
<Vrsn>::Max256Text
[0..1 Action.DataSetIdentification.CreationDateTim
CreationDateTime ] e of the related management plan action, if
present.
<CreDtTm>::ISODateTime
[0..1 Appli Challenge generated by the POI for key
POIChallenge ] download.
<POIChllng>::Max140Binary
[0..1 Appli Challenge generated by the Terminal
TMChallenge ] Manager in a previous
ManagementPlanReplacement containing
key to dowload or
AcceptorConfigurationUpdate containing key
to store.
<TMChllng>::Max140Binary
SessionKey [0..1 Appli Temporary encryption key that the host will
] use for protecting keys to download.
<SsnKey>
[0..1 Proof of delegation to be validated by the
DelegationProof ] terminal manager receiving a status report
5 from a new POI.
<DlgtnProof>::Max5000Binary
Protected- [0..1 Protected proof of delegation.
5 DelegationProof ]
<PrtctdDlgtnProof>
Event [0..*] Confi List of all completed TMS actions which have
g been performed since the last StatusReport
message
<Evt>
TimeStamp [1..1 Contains the POI processing time of the
] event. Time accuracy has to be at least in
5 seconds.
<TmStmp>::ISODateTime
63 Page 30
64 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
<Rslt>::TerminalManagementActionResult4C
ode
Action- [1..1 Identification of the TMS action for which the
Identification ] Result is provided.
<ActnId>
[1..1 Filled with the ActionType from message
ActionType ] processed if not available like CREATE
action for AcceptorConfigurationUpdate the
6 value to used is DOWNLOAD
<ActnTp>::TerminalManagementAction4Cod
e
[0..1 Should be provided.
DataSetIdentification ]
<DataSetId>
[0..1 Should be provided to ease processing
Name ] analyses.
7
<Nm>::Max256Text
[1..1 <Tp>::DataSetCategory12Code
7
Type ]
[0..1 <Vrsn>::Max256Text
7
Version ]
[0..1 Should be provided to ease processing
CreationDateTime ] analyses.
<CreDtTm>::ISODateTime
Additional- [0..1 C4 Complete the Result, giving details on the
ErrorInformation ] error (e.g. number of retries).
<AddtlErrInf>::Max70Text
5 [0..1 Must be provided by POI systems that
] support multiple terminal managers using
TerminalManagerIdentificatio delegation.
n <TermnlMgrId>::Max35Text
Errors [0..*] Confi Manufacturer specific log file for errors (e.g.
g card reader errors)
4
<Errs>::Max140Text
65 Page 31
66 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
<SctyTrlr>
446
447
448
67 Page 32
68 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
69 Page 33
70 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
518
519
71 3 For the first contact to the TM in the life cycle of the POI, the TM may use POIIdentification or DelegationProof of the StatusReport
72 message to register the POI and send back a first management plan to the POI.
73 Page 34
74 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
520
<FrmtVrsn>::Max6Text
2 ExchangeIdentification [1..1 See StatusReport.
]
Used to link a ManagementPlanReplacement
response message to a StatusRequest
message. Unique identifier set by the
InitiatingParty to assign a
ManagementReplacement response
message to the StatusReport request
message, or to detect duplication of
ManagementReplacement file transfer.
<XchgId>::Number
2 CreationDateTime [1..1 See StatusReport
]
<CreDtTm>::ISODateTime
2 InitiatingParty [1..1 See StatusReport
]
<InitgPty>
3 Identification [1..1 See StatusReport
]
<Id>::Max35Text
75 Page 35
76 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
<Tp>::PartyType5Code
3 Issuer [0..1 Appli See StatusReport
]
<Issr>::PartyType6Code
3 Country [0..1 Appli See StatusReport
]
<Ctry>::Min2Max3AlphaText
3 ShortName [0..1 Appli In case of digital signature, may contain the
] identification of the TM or MTM certificate
(Subject).
<ShrtNm>::Max35Text
2 RecipientParty [0..1 Appli See StatusReport
]
<RcptPty>
3 Identification [1..1 See StatusReport
]
<Id>::Max35Text
3 Type [0..1 * Message exchange: allowed values are
] "MasterTerminalManager" and
"TerminalManager".
In case of File transfer: "OriginatingPOI "
<Tp>::PartyType5Code
3 Issuer [0..1 See StatusReport
]
<Issr>::PartyType6Code
3 Country [0..1 Appli See StatusReport
]
<Ctry>::Min2Max3AlphaText
3 ShortName [0..1 Appli In case of digital signature and message
] exchange, this element may contain the
identification of the POI certificate (Subject).
<ShrtNm>::Max35Text
3 RemoteAccess [0..1 Based on type NetworkParameters
]
<RmotAccs>
1 ManagementPlan [1..1 ManagementPlanReplacement message
] body.
<MgmtPlan>
77 Page 36
78 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
<POIId>
3 Identification [1..1 Part of the TMS/Acquirer/IntermediaryAgent
] or Merchant configuration.
<Id>::Max35Text
3 Type [0..1 * Default "OriginatingPOI"
]
Allowed value: OriginatingPOI
<Tp>::PartyType5Code
3 Issuer [0..1 Appli * Allowed values: "MasterTerminalManager,
] "TerminalManager", "Merchant", "Acquirer"
and "IntermediaryAgent"
<Issr>::PartyType6Code
3 Country [0..1 Appli <Ctry>::Min2Max3AlphaText
]
3 ShortName [0..1 Appli Name of the POI assigned by the TMS.
]
<ShrtNm>::Max35Text
2 TerminalManagerIdentification [1..1 <TermnlMgrId>
]
3 Identification [1..1 Appli <Id>::Max35Text
]
3 Type [0..1 * See StatusReport
]
<Tp>::PartyType5Code
3 Issuer [0..1 Appli * Not used.
]
<Issr>::PartyType6Code
3 Country [0..1 Appli <Ctry>::Min2Max3AlphaText
]
3 ShortName [0..1 Appli See StatusReport
]
<ShrtNm>::Max35Text
2 DataSet [1..1 The data set contains a management plan
]
<DataSet>
3 Identification [1..1 Identification of the management plan.
]
<Id>
79 Page 37
80 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
<CreDtTm>::ISODateTime
3 SequenceCounter [0..1 * Not used
]
<SeqCntr>::Max9NumericText
3 Content [0..1 Contents of the management plan. The
] absence of Content means that current
management plan needs not to be replaced.
<Cntt>
4 TMChallenge [0..1 Terminal Manager challenge that the POI has
] to send in a StatusReport requesting key
download.
Used for key download delegated action.
<TMChllng>::Max140Binary
KeyEncipherment- [0..*] Certificate chain containing the signed public
Certificate key encryption key of the Terminal Manager
used by the POI to send a session key
encryption key.
The format of the certificate is compliant with
the DER X.509 format.
The certificate chain must be ordered by
starting with the higher certificate level and
ending with the leaf.
Used for key download delegated action.
<KeyNcphrmntCert>::Max10KBinary
4 Action [1..*] List of TMS actions associated to the
management plan to be performed by the
POI.
<Actn>
5 Type [1..1 * Allowed values:
]
C6 "Delete", "Restart", "Download", "Upload",
81 Page 38
82 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
<RmotAccs>
5 Key [0..*] Identification of Key to use to perform the
Action.
<Key>
6 [1..1 <KeyId>::Max140Text
KeyIdentification ]
6 [1..1 <KeyVrsn>::Max140Text
KeyVersion ]
6 [0..1 <SeqNb>::Number
SequenceNumber ]
6 [0..1 <DerivtnId>::Min5Max16Binary
DerivationIdentification ]
6 [0..1 <Tp>::CryptographicKeyType3Code
Type ]
6 [0..*] <Fctn>::KeyUsage1Code
Function
[0..1 Must be absent if
TerminalManager- ] ManagementPlan.TerminalManagerId.Type is
Identification not ‘MasterTerminalManager’,
C1
<TermnlMgrId>
6 [1..1 C11 List of Actions must be grouped by values of
Identification ] this Identification.
<Id>::Max35Text
6 [0..1 <Tp>::PartyType5Code
Type ]
6 [0..1 <Issr>::PartyType6Code
Issuer ]
6 [0..1 <Ctry>::Min2Max3AlphaText
Country ]
6 [0..1 <ShrtNm>::Max35Text
ShortName ]
5 [0..1 C20 TMS protocol to use for performing the
83 Page 39
84 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
<TMSPrtcol>::Max35Text
5 [0..1 C20 Version of the TMS protocol to use to perform
TMSProtocolVersion ] the maintenance action.
Might be suitable in the following but not
restricted examples:
POI server managing POI Terminals
with different TMS ProtocolVersion ,
POI is managed by two TM with
different TMSProtocolVersion
POI Software Update with legacy
protocol
…
<TMSPrtcolVrsn>::Max35Text
5 [0..1 C2 Identification of the data set associated to the
DataSetIdentification ] action.
Mandatory for Action.Type "Delete", “Install” ,
“Update”, “Upload”and "Download",
Absent for Action.Type "Restart".
<DataSetId>
6 [0..1 C6 Name of the data set associated to the
Name ] action.
C12
Should be present if needed to identify.
C13
C14
<Nm>::Max256Text
6 [1..1 C3 "AcquirerParameters":If the acquirer
Type ] configuration parameters have
C4
to be deleted (Action.Type =
C5 "Delete"), updated
(Action.Type = "Update") or
C6 replaced (Action.Type =
C7 "Download").
C16 "ApplicationParameters": If only the
C20 application parameters have to
be deleted (Action.Type =
"Delete"), updated
(Action.Type = "Update") or
replaced (Action.Type =
"Download").
"ManagementPlan": if management plan
has to be replaced by a new
one to download (Action.Type
= "Download")
85 Page 40
86 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
<Tp>::DataSetCategory12Code
6 [0..1 C6 Version of the data set to be processed by
Version ] the POI
C12
C14
<Vrsn>::Max256Text
6 [0..1 C6 Date time of creation of the data set.
CreationDateTime ]
C12
<CreDtTm>::ISODateTime
87 Page 41
88 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
<CmpntTp>::DataSetCategory12Code
5 [0..1 Identification of the delegation scope
DelegationScope- ] assigned by the MTM.
Identification
<DlgtnScpId>::Max35Text
5 [0..1 Definition of the delegation scope
DelegationScopeDefinition ]
<DlgtnScpDef>::Max3000Binary
5 [0..1 Proof of delegation to be verified by the POI,
DelegationProof ] when performing the delegated actions.
<DlgtnProof>::Max5000Binary
[0..1 Protected proof of delegation.
ProtectedDelegationProof ]
<PrtctdDlgtnProof>
5 Trigger [1..1 Appli * Allowed values:
] C8 "DateTime": the action is triggered by the
information contained in the
Action.TimeCondition data structure
“Host”: the action is triggered through a
response sent by a Host.
89 Page 42
90 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
<Trggr>::TerminalManagementActionTrigger
1Code
5 [0..*] Process to perform before or after the TMS
AdditionalProcess action, allowed values are:
"Reconciliation": the POI has to perform
reconciliation before the action.
"ManualConfirmation": the POI has to ask a
confirmation to the cashier before starting
the action.
“Restart” : the POI has to restart the
application after the successful completion
of the action and other optional external
conditions (e.g acknowledgement of the
ECR).After the completion of the action
and before the restart of the application,
the DataSet identified by
DataSetIdentification must not be used for
transaction processing. The application
may be invalid or may used former
DataSet until the restart of the application.
<AddtlPrc>::TerminalManagementAdditional
Process1Code
5 ReTry [0..1 Condition of a retry if the action is not
] successfully completed.
<ReTry>
6 [1..1 Time period to wait after the last attempt in
Delay ] MMDDhhmm, leading zeros may be omitted.
<Dely>::Max9NumericText
6 [0..1 Maximum number of retries.
MaximumNumber ]
<MaxNb>::Number
5 [0..1 C8 Mandatory for Action.Trigger "DateTime",
TimeCondition ]
Absent for Action.Trigger "HostEvent",
"Manual", "SaleEvent"
<TmCond>
6 [0..1 C9 Must be absent if StartTime is present.
91 Page 43
92 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
<WtgTm>::Max9NumericText
6 [0..1 C9 Must be absent if WaitingTime is present
StartTime ]
Date and time when the action must be
started. If Timezone is not present, POI
timezone is assumed.
<StartTm>::ISODateTime
6 [0..1 Date and time after which the action must not
EndTime ] be started and performed. If Timezone is not
present, POI timezone is assumed.
<EndTm>::ISODateTime
6 [0..1 C10 Time period for a cyclic action, absent
Period ] otherwise.
<Prd>::Max9NumericText
6 [0..1 C10 Maximum number of cycles for a cyclic
MaximumNumber ] action. If the value is 0, the number of cycles
is limitless.
<MaxNb>::Number
5 [0..1 Terminal Manager challenge that the POI has
TMChallenge ] to send in a StatusReport requesting key
download.
<TMChllng>::Max140Binary
[0..*] Certificate chain containing the signed public
KeyEncipherment- key encryption key of the Terminal Manager
Certificate used by the POI to send a session key
encryption key.
The format of the certificate is compliant with
the DER X.509 format.
The certificate chain must ordered by starting
with the higher certificate level and ending
with the leaf.
<KeyNcphrmntCert>::Max10KBinary
5 ErrorAction [0..*] Processing to be performed after the last
action retry fails.
<ErrActn>
6 [1..*] * Result of the last retry of the action. All values
ActionResult are allowed with the exception of "Success".
.If the actual error doesn’t match any
93 Page 44
94 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
<ActnRslt>::TerminalManagementActionRes
ult4Code
6 [1..1 Processing to be performed for the results
ActionToProcess ] defined by ActionResult, allowed values:
SendStatusReport Send a status report
immediately, reporting the
result of the action and
requesting a
ManagementPlan Then
sending also
POIComponent in the
StatusReport
StopSequence Stop the current sequence
of terminal management
actions without any action,
and do not notice the error
with a status report.
<ActnToPrc>::TerminalManagementErrorActi
on2Code
5 [0..*] Additional information about the maintenance
AdditionalInformation action.
<AddtlInf>::Max3000Binary
5 [0..*] C16 For Action.DatasetIdentification.Type =
MessageItem StatusReport or
CertificateManagementRequest those data
elements can provide information to POI
about expected data in StatusReport or
CertificateManagementRequest
corresponding to this Action
<MsgItm>
6 [1..1 <ItmId>::Max140Text
ItemIdentification ]
6 [1..1 C17 <Cond>::MessageItemCondition1Code
Condition ]
C18
C19
6 [0..*] C17 <Val>::Max140Text
Value
C18
C19
1 SecurityTrailer [0..1 Digital signature or MAC of the message
] body ManagementPlan, including the
delimiters (start and end tags if XML
encoding).
This element is computed as a response
95 Page 45
96 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
message.
<SctyTrlr>
534
97 Page 46
98 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
99 Page 47
100 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
576 1.4. ExchangeIdentifier should have the same value as in StatusReport. If not, the action is stored in the
577 log of Event with Result containing "InvalidContent" and AdditionalErrorInformation the text value
578 "ExchangeIdentifier".
579 1.5. CreationDateTime is stored if required.
580 2. If configured the POI checks the signature of the received message as described in [EPAS SECU]. If
581 asymmetric cryptography is used, the POI checks the signature by using the public key contained in the
582 certificate that is present in the security trailer or already defined in the configuration data of the POI. For
583 each terminal manager there is a separate certificate:
584 - certPRMTM_CA(PUMTM_AUTH) if the message was received from the MTM or
585 - certPRMTM_CA(PUTM_AUTH) if the message was received from the TM.
586 If the verification of the signature fails, the error is logged in Event with Result containing
587 "SignatureError" and AdditionalErrorInformation the text value "SecurityTrailer".
588 3. If applicable, the POI checks whether the information in the Certificate Subject correspond to the
589 TerminalManagerIdentification of the message body. If not, the action is logged in Event with Result
590 containing "InvalidContent" and AdditionalErrorInformation the text value "Signer.SignerIdentification".
591 4. The POI checks whether Type of Identification corresponds to "ManagementPlan". If not, the error is
592 logged in Event with Result containing "InvalidContent" and AdditionalErrorInformation the text value
593 "DataSet.Identification.Type".
594 5. The POI checks the completeness, syntax and contents of each action definition grouped by
595 TerminalManagerIdentification present in the received ManagementPlan. In case of an error, the whole
596 management plan is ignored. The list of Action of the previous management plan remains valid. The
597 error is then logged in Event.
598 5.1. The actions are analysed whether the actions are correctly defined. The mandatory data elements
599 have to be present (see ERR3, section 10). All existing data elements have to be correctly formatted
600 (ERR2, section 10).
601 5.2. If an enumeration value of data elements contained in action is unknown, the action may be added
602 to the Event log with Result containing "NotSupported" and AdditionalErrorInformation containing the
603 message component or element.
604 5.3. If the message element Address is not present in the received Action, the POI uses the currently
605 defined address of the TMS (e.g. manually entered at the POI by the user or issued in
606 TMSIdentification of TMSTrigger sent by the acquirer host or intermediary agent in an acquirer
607 protocol response message, or setup up by any another means).
608 5.4. Type or Name in DataSetIdentification is used to identify the category of data to be uploaded,
609 downloaded or deleted:
610 5.4.1. For the Action "Upload",
611 - if DataSetIdentification.Type has the value "StatusReport”, all other elements of
612 DataSetIdentification must be absent
613 - if DataSetIdentification.Type has the value "CertificateManagementRequest”,
614 DataSetIdentification.Name must be present
615 - if DataSetIdentification.Type has the value "LogFile” then DataSetIdentification.Name must
616 be present to identify a logical file. In this case, the POI must use the RemoteAccess,
617 TMSProtocol and TMSProtocolVersion defined within this Action to transfer the LogFile.
618 5.4.2. For the Action "Upload", with DataSetIdentification.Type = "StatusReport” or
619 “CertificateManagementRequest”, one or several Action.MessageItem may be declared that
620 must be taken into account by the POI when generating the StatusReport or
621 CertificateManagementRequest.
622 5.4.3. For the action “Download” if DataSetIdentification.Type contains the value
623 “ManagementPlan”. All other elements must be absent.
101 Page 48
102 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
624 5.4.4. For the action “Download” if DataSetIdentification.Type doesn’t contain the value
625 “ManagementPlan”, DataSetIdentification.Type must contain either the values
626 ApplicationParameters, AcquirerParameters, MerchantParameters, TerminalParameters or
627 SecurityParameters; DataSetIdentification.Name must contain the name of the file to be
628 downloaded when file transfer is used and the name of the DataSet to receive for message
629 exchanges. All other elements should be present in DataSetIdentification. If Version is
630 present, the POI must download only this version of the parameters.
631 5.4.5. For the action Delete, DataSetIdentification.Type and DataSetIdentification.Name must be
632 present.
633 If Type contains the value ApplicationParameters, the parameters previously received by an
634 AcceptorConfigurationUpdate contained in Content.ApplicationParameters and identified by
635 Content.ApplicationParameters.ApplicationIdentification equals to
636 DataSetIdentification.Name are deleted.
637 If Type contains the value AcquirerParameters, all parameters previously received by an
638 AcceptorConfigurationUpdate contained in Content are deleted.
639 Delete action can only be applied by the MTM or a TM which issued the data to delete
640
641 5.4.6. If the value of DataSetIdentification.Type is not managed by this POI, the action is ignored.
642 This action must be logged in Event and Result must contain the value "NotSupported" and
643 AdditionalErrorInformation, the wrong message element "Action.DataSetIdentification.Type".
644 5.5. If Trigger is present and valid, the possible types of events that can initiate the current action are
645 taken into account. If the value of the Trigger is not supported by the POI, the action must be
646 ignored. This action must be logged in Event with Result containing "NotSupported" and
647 AdditionalErrorInformation the text value "Action.Trigger".
648 5.6. If AdditionalProcess is present, this pre-condition or post-condition is stored for the current action. If
649 the value is not supported by the POI, the error must be logged in Event with Result containing
650 "NotSupported" and AdditionalErrorInformation containing the wrong message element
651 "Action.AdditionalProcess"; Action must be ignored.
652 5.7. If TimeCondition is present, its content is checked to determine whether the data element are
653 correctly formatted. If the format of a timing parameter in TimeCondition is not correct according to
654 the ISODateTime format or the value of StartTime or EndTime is wrong (e.g. dd > 31; mm-dd = 02-
655 30), the complete management plan of the Terminal Manager Identification is discarded and an error
656 must be added in the log of Event with Result containing "FormatError".
657 If the StartTime or the complete TimeCondition is missing for the first action defined for a
658 TerminalManagerIdentification, the StartTime of this action is set to the current date and time plus
659 WaitingTime if set.
660 If TimeZone is not present in StartTime or EndTime, then the POI local time must be assumed. In the
661 example of 2017-04-06T21:15:00, the terminal will process in its own time.
662 If a TimeZone is provided, the terminal must take in account the Time Zone. The example of 2017-04-
663 06T21:15:00.000-05:00, when the terminal is at UTC-8, the StartTime will be 2017-04-06T18:15:00.
664 2017-04-06T21:15:00.000-05:00 is 2017-04-07T02:15:00Z, and therefore it's 2017-04-
665 06T18:15:00.000-08:00.
666 If a TimeZone is in zulu time, in this StartTime example, 2017-04-06T21:15:00Z, a terminal in UTC-5,
667 will use 2017-04-06T16:15:00.
668 It is recommended that the MTM manages the clock synchronization. There should only be one
669 manager of the clock time. If a POI receives a StartTime or an EndTime with a TimeZone and is not
670 aware of its own TimeZone, the complete management plan of the Terminal Manager Identification is
671 discarded and an error must be added in the log of Event with Result containing "FormatError".
672 If StartTime and WaitingTime or the complete TimeCondition are missing for an action defined for a
673 TerminalManagerIdentification, the action should be started as soon as possible.
103 Page 49
104 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
674
675 Subsequently all other present data elements are checked and stored.
676 5.8. The error actions to be performed are stored with the related management plan action. If an error
677 occurs while performing a management plan action, the POI must perform the appropriate error
678 action defined for the ActionResult of the error.
679 5.8.1. For a known ActionResult (defined in the code set) that is not managed in the ErrorAction:
680 If an ActionResult of “AnyError” is defined, then the error action associated to the
681 ActionResult of “AnyError” must be performed.
682 If an ActionResult of “AnyError” is not defined, then the error must be ignored by the POI.
683 5.8.2. For an unknown ActionResult (not defined in the code set) that is not managed in the
684 ErrorAction:
685 If an ActionResult of “UnlistedError” is defined, then the error action associated to the
686 ActionResult of “UnlistedError” must be performed.
687 If an ActionResult of “UnlistedError” is not defined, then the error must be ignored by the
688 POI.
689 Note: A TM should send an ErrorAction with an ActionToProcess of "SendStatusReport" defined for
690 all ActionResults by default for each management plan. This allows the TM to define the sending of a
691 StatusReport as the default behaviour for a POI in the event of an error.
692 6. The downloaded management plan replaces all actions defined for this specific TM (MTM or not).
693 7. The POI erases the contents of the existing log of Event per TM, if the log has been sent to the TM.
694 8. Subsequently, the POI starts the execution of the management plan (see section 4.4).
695
696
105 Page 50
106 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
697
107 Page 51
108 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
741 c. If WaitingTime has been sent and is not equal to 0, the POI waits for WaitingTime
742 2. If TimeCondition of the started action contains Period, the new StartTime is calculated and stored in
743 the management plan of this Terminal Manager. If Period is missing or the action is not part of a
744 sequence, the action must not be executed anymore.
745 3. After execution of an action the next action is analysed. The next action is executed
746 a. if the StartTime is passed or
747 b. if the WaitingTime is reached.
748
760
761 The first call is started when StartTime T0 is reached. The POI sends a StatusReport message containing
762 DataSetRequired with the same value than DataSetIdentification of the action. The TM or the MTM sends
763 back a ManagementPlanReplacement message.
764
765 In the case where there is nothing new to be downloaded by TMS, the exchange look like this
109 Page 52
110 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
766
767 Figure 1 : StatusReport with no change on the ManagementPlan
768
769 In case where new parameters are prepared for downloading (let say Acquirer parameters), a new
770 Management Plan is sent to POI
StartTim WaitingTime Period Type DataSetIdentification.Name DataSetIdentification.Type
e
- - - Download -any first name AcquirerParameters
- - Cycle1 Download -any second name ManagementPlan
771
772 And the exchange looks like this
773
774 Figure 2 : StatusReport with change on ManagementPlan and AcceptorConfigurationUpdate.
775
776 The following calls are performed periodically using Period defined by "Cycle1", with the same exchange of
777 messages described in Figure 1 : StatusReport with no change on the ManagementPlan.
778
111 Page 53
112 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
790
D1 - Download - AcquirerParameters
- D2 - Download - ApplicationParameters
- - - Restart - -
- D4 - Download - ManagementPlan
113 Page 54
114 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
810 After T1
811 o Upload a first log file of the terminal named “LifeCounters”
812 o After D1, upload a second log file of the terminal named "Battery"
813 o After D2, send a StatusReport. The response message may contain a new management
814 plan.
815 o If no management plan has been received, the POI repeats this sequence with a “cycle1”
816 periodicity
817
StartTim Waiting Period Action. MessageItem. DataSetIdentification.Type
e Time Type ItemIdentification
T0 - Upload MyPKI CertificateManagementRequest
T1 Cycle1 Upload LifeCounters LogFile
818
115 Page 55
116 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
847 In case of error during the upload of the log file, an Event is recorded in the event log with Result
848 containing the relevant value and AdditionalErrorInformation must contain the logical name of the
849 requested file.
850
851
117 Page 56
118 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
mber
C11 All Actions for a TerminalManagerIdentification must DataSet.Content.Action.TerminalManagerIdentificati
be grouped by ascending on.Identification
TerminalManagerIdentification
C12 If Action.Type=Download,and DataSet.Content.Action.Type
DataSetIdentification.Type=”ManagementPlan’, the DataSet.Content.Action.DataSetIdentification.Name
3 elements DataSetIdentification.Name,
DataSet.Content.Action.DataSetIdentification.Type
DataSetIdentification.Version,
DataSetIdentification.CreationDateTime must be DataSet.Content.Action.DataSetIdentification.Versio
absent n
DataSet.Content.Action.DataSetIdentification.Creati
onDateTime
C13 If Action.Type=Download or Delete, and DataSet.Content.Action.Type
DataSetIdentification.Type is not equal to DataSet.Content.Action.DataSetIdentification.Name
'ManagementPlan’, DataSetIdentification.Name
DataSet.Content.Action.DataSetIdentification.Type
must be present
C14 If Action.Type= Install or Update,and DataSet.Content.Action.Type
DataSetIdentification.Type is not equal to DataSet.Content.Action.DataSetIdentification.Name
’ManagementPlan’, one of the
DataSet.Content.Action.DataSetIdentification.Versio
DataSetIdentification.Name,
n
DataSetIdentification.Version,
DataSetIdentification.CreationDateTime must be DataSet.Content.Action.DataSetIdentification.Creati
present onDateTime
DataSet.Content.Action.DataSetIdentification.Type
C15
C16 If MessageItem is present then Action.Type must DataSet.Content.Action.Type
equal to Upload, and DataSetIdentification.Type DataSet.Content.Action.DataSetIdentification.Type
must be equal to ”StatusReport" or
DataSet.Content.Action.MessageItem
“CertificateManagementRequest”.
C17 A MessageItem.Value must be present if MessageItem.Condition
MessageItem.Condition is ConfiguredValue or MessageItem.Value
AllowedValue
C18 More than 1 MessageItem.Value must be present if MessageItem.Condition
MessageItem.Condition is AllowedValue MessageItem.Value
C19 If MessageItem.Condition is NotSupported, MessageItem.Condition
Mandatory or IfAvailable then MessageItem.Value is MessageItem.Value
absent
C20 If Action.Type is equal to “Upload” and Action.Type
Action.DataSetIdentification.Type equal “LogFile” Action.DataSetIdentification.Type
then Action.TMSProtocol,
Action.TMSProtocol
Action.TMSProtocolVersion and
Action.RemoteAccess must be defined Action.TMSProtocolVersion
Action.RemoteAccess
857
858
859
119 Page 57
120 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
<FrmtVrsn>::Max6Text
2 ExchangeIdentification [1..1 Unique identifier for the InitiatingParty to
] detect duplication of the
AcceptorConfigurationUpadet file transfer, or
to assign a AcceptorConfigurationUpdate
response message to the StatusReport
request message.
Cyclic counter that increments by one with
each new transfer between the InitiatingParty
and the RecipientParty.
<XchgId>::Number
2 CreationDateTime [1..1 See StatusReport
]
<CreDtTm>::ISODateTime
2 InitiatingParty [1..1 See StatusReport
]
<InitgPty>
3 Identification [1..1 See StatusReport
]
<Id>::Max35Text
3 Type [0..1 * In case of message exchange the allowed
] value is "OriginatingPOI".
In case of file transfer; allowed values are:
"TerminalManager"
or "MasterTerminalManager" .
<Tp>::PartyType5Code
3 Issuer [0..1 Appli See StatusReport
]
121 Page 58
122 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
<Tp>::PartyType5Code
3 Issuer [0..1 Appli See StatusReport
]
<Issr>::PartyType6Code
3 Country [0..1 Appli See StatusReport
]
<Ctry>::Min2Max3AlphaText
3 ShortName [0..1 Appli See ManagementReplacement
]
<ShrtNm>::Max35Text
3 RemoteAccess [0..1 Access information to reach the target host.
] (see StatusReport).
Based on type NetworkParameters.
<RmotAccs>
1 AcceptorConfiguration [1..1 AcceptorConfigurationUpdate message body
]
<AccptrCfgtn>
2 TerminalManagerIdentification [1..1 <TermnlMgrId>
]
3 Identification [1..1 See StatusReport
]
<Id>::Max35Text
3 Type [0..1 Appli * Allowed values: "MasterTerminalManager" or
] C28 "TerminalManager".
<Tp>::PartyType5Code
123 Page 59
124 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
<DataSet>
3 Identification [1..1 Identification of the data set
]
<Id>
4 Name [0..1 Name of the data set
]
<Nm>::Max256Text
4 Type [1..1 * Allowed values:
]
"AcquirerParameters":
AcquirerProtocolParameters,
HostCommunicationParameters,
ApplicationParameters and
MerchantParameters are present if they
need to be created or replaced.
"ApplicationParameters" if only
ApplicationParameters is present.
"MerchantParameters" if only
MerchantParameters is present.
"Parameters" for any combination of
parameters in the message.
"TerminalParameters" if only
TerminalParameters is present.
"SecurityParameters" if only
SecurityParameters is present.
<Tp>::DataSetCategory12Code
4 Version [0..1 Version of the parameters, this value may be
] used in the data element
Acquirer.ParametersVersion of the Acquirer
protocol if the DataSetIdentification.Type is
AcquirerParameters.
<Vrsn>::Max256Text
125 Page 60
126 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
<CreDtTm>::ISODateTime
3 SequenceCounter [0..1 * <SeqCntr>::Max9NumericText
]
3 POIIdentification [0..*] Appli Identification of the point of interactions
involved by the configuration data set.
<POIId>
4 Identification [1..1 <Id>::Max35Text
]
4 Type [0..1 <Tp>::PartyType5Code
]
4 Issuer [0..1 <Issr>::PartyType6Code
]
4 Country [0..1 <Ctry>::Min2Max3AlphaText
]
4 ShortName [0..1 <ShrtNm>::Max35Text
]
3 ConfigurationScope [0..1 Scope of the configuration contained in the
] data set.
PSYS POISystem
Configuration to apply to the whole POI
system.
PGRP POIGroup
Configuration to apply to a subset of the
whole POI system.
PSNG SinglePOI
Configuration to apply to a single POI
terminal.
<CfgtnScp>::PartyType15Code
3 Content [1..1 <Cntt>
]
4 [0..1 C23 True if the whole configuration related to this
ReplaceConfiguration ] terminal manager must be deleted prior to
taking this new configuration into account.
127 Page 61
128 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
<RplcCfgtn>::TrueFalseIndicator
4 [0..*] Configuration parameters of the TMS protocol
TMSProtocolParameters between a POI and a terminal manager.
Since this configuration is optional, it might
happen that a POI needs to use any
subelement of this configuration but hasn't
received or been configured with any value.
In that case, the POI will have to consider the
value labelled DEFAULT in the subelements
of this configuration. Optional values without
any DEFAULT must be considered as absent
or unknown.
<TMSPrtcolParams>
ActionType [1..1 C23 TerminalManagementAction3Code
]
Type of action for the configuration
parameters.
CREA Create
Request to create or add the element
identified inside the message exchange.
UPDT Update
Request to update the element identified
inside the message exchange.
DELT Delete
Request to delete the element identified
inside the message exchange.
<ActnTp>::TerminalManagementAction3Cod
e
[1..1 Identification of the master terminal manager
TerminalManager- ] or the terminal manager.
Identification
<TermnlMgrId>
6 [1..1 DEFAUT value to consider is a space "." or
Identification ] any other preconfigured value inside the POI
<Id>::Max35Text
6 [0..1 DEFAULT values to consider are
Type ] TerminalManager or
MasterTerminalManager.
<Tp>::PartyType5Code
6 [0..1 DEFAULT values to consider are
Issuer ] TerminalManager or
MasterTerminalManager.
129 Page 62
130 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
<PrtcolVrsn>::Max8Text
5 [1..*] Maintenance services provided by the
MaintenanceService terminal manager. Allowed values:
"AcquirerParameters" Acquirer
specific configuration
parameters for the point
of interaction (POI)
system.
"ApplicationParameters" Payment
application specific
configuration
parameters for the point
of interaction (POI)
system.
“CertificateParameters” Certificate
provided by a terminal
manager.
"MasterTerminalManager" The terminal
manager is the master.
"MerchantParameters" Merchant
configuration
parameters for the point
of interaction (POI).
"Monitoring" Monitoring of the
terminal estate.
"SecurityParameters"Point of interaction
parameters related to
the security of software
application and
application protocol.
"SoftwareModule" Software module
update.
"TerminalParameters" Point of
interaction parameters
attached to the
terminal.
“TMSProtocolParameters” Configuration
131 Page 63
132 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
<MntncSvc>::DataSetCategory10Code
5 Version [1..1 Version of the TMS protocol parameters.
]
<Vrsn>::Max256Text
5 [0..*] Identification of applications which may be
ApplicationIdentification managed by the TM, partially or globally.
DEFAULT values to consider are all
ApplicationIdentification of all application
residing inside the POI.
<ApplId>::Max35Text
5 [1..1 Identification of the terminal manager host.
HostIdentification ]
DEFAULT values to consider are
TerminalManager or
MasterTerminalManager.
<HstId>::Max35Text
5 [0..1 C28 Only the MTM is allowed to set this value.
POIIdentification ] Otherwise the message must be rejected and
processed as a formatting error.
DEFAULT value to consider is in case of
MasterTerminalManager, the POI serial
number or any other preconfigured value. In
case of TerminalManager, the
POIIdentification given by the
MasterTerminalManager.
<POIId>::Max35Text
[0..1 New identification of the initiating party to set
InitiatingParty- ] in TMS messages with this terminal manager.
Identification
<InitgPtyId>::Max35Text
[0..1 New identification of the recipient party to set
RecipientParty- ] in TMS messages with this terminal manager.
Identification
<RcptPtyId>::Max35Text
5 FileTransfer [0..1 When set to True, configuration parameters
133 Page 64
134 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
<FileTrf>::TrueFalseIndicator
5 [0..*] <MsgItm>
MessageItem
6 [1..1 <ItmId>::Max140Text
ItemIdentification ]
6 [1..1 <Cond>::MessageItemCondition1Code
Condition ]
6 [0..*] <Val>::Max140Text
Value
4 [0..*] Acquirer protocol parameters defined per set
of POI applications.
AcquirerProtocolParameters
<AcqrrPrtcolParams>
5 ActionType [1..1 C23 Type of action for the configuration
] parameters.
<ActnTp>::TerminalManagementAction3Cod
e
5 [1..*] * Identification of the acquirer protocol
AcquirerIdentification parameters.
AcquirerIdentification must be restricted to
[1..1]
<AcqrrId>
6 [1..1 <Id>::Max35Text
Identification ]
6 [0..1 Appli <Tp>::PartyType3Code
Type ]
6 [0..1 Appli
Issuer ] <Issr>::PartyType4Code
6 [0..1 <Ctry>::Min2Max3AlphaText
Country ]
6 [0..1 Appli <ShrtNm>::Max35Text
ShortName ]
5 Version [1..1 Version of the Acquirer protocol parameters.
]
<Vrsn>::Max256Text
5 [0..*] Identification of the applications the acquirer
ApplicationIdentification protocol parameters are valid for.
<ApplId>::Max35Text
5 Host [0..*] Repartition of messages per acquirer host.
135 Page 65
136 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
<Hst>
6 [1..1 Identification of the host used also in
HostIdentification ] HostCommunicationParameters.
<HstId>::Max35Text
6 [0..*] List of MessageFunction to be sent to the
MessageToSend host (the message "DiagnosticRequest" must
be accepted by all hosts, even if not present
in this list). Allowed values:
"AuthorisationRequest": Request for
authorisation without financial capture.
"BatchTransfer": Transfer the financial data
as a collection of transction.
"CancellationRequest": Request for
cancellation.
"CancellationAdvice": Advice for
cancellation.
"CompletionAdvice": Advice for completion
without financial capture.
"CurrencyConversionRequest": Request for
currency conversion.
"DiagnosticRequest": Request for diagnostic.
"FinancialAuthorisationRequest": Request
for authorisation with financial capture.
"FinancialCompletionAdvice": Advice for
completion with financial capture.
"FinancialReversalAdvice": Advice for
reversal with financial capture.
"ReconciliationRequest": Request for
reconciliation.
"ReversalAdvice": Advice for reversal
without financial capture. To workaround
an editorial error, the coding to use for
ReversalAdvice is REVV
If Host is present and MessageToSend is
absent, then no caaa messages except
DiagnosticRequest could be sent to the
Host.
137 Page 66
138 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
<MsgToSnd>::MessageFunction15Code
6 [0..1 ProtocolVersion identifies which Acquirer
ProtocolVersion ] protocol version is supported by the Host
identified by HostIdentification. If absent, the
version is the value of FormatVersion.
<PrtcolVrsn>::Max8Text
5 [0..1 Configuration for data capture and completion
OnLineTransaction ] procedure of online authorised transactions
If absent, the financial capture for online
transaction is not performed by the acquirer
protocol
<OnLineTx>
6 [1..1 C1 Definition of capture mechanism for online
FinancialCapture ] C5 authorised transactions, allowed values:
"Authorisation": financial capture performed
with an authorisation exchange.
"Completion": financial capture performed
with a completion exchange.
"Batch": financial capture performed by
batch transfer.
<FinCaptr>::FinancialCapture1Code
6 [0..1 C1 If the Online Transactions are captured
BatchTransfer ] through Batch the structure must be present.
.
<BtchTrf>
7 [1..*] * The following policies for the capture
ExchangePolicy procedure by Batch Transfer are allowed:
C2
"Cyclic": Batch sent periodically according
C3
to TimeCondition ,
C4
"NumberLimit": Batch sent when the number
of non-captured online authorised
transaction reaches MaximumNumber, as
well as
"TotalLimit": Batch sent when the total
amount of non-captured online authorised
transaction reaches MaximumAmount.
"OnDemand": Batch exchange is performed
if requested by the acquirer in the previous
exchange, or manually by the acceptor. If
no other ExchangePolicy is present,
OnDemand must be present. The
ExchangePolicy “OnDemand” must always
139 Page 67
140 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
<XchgPlcy>::ExchangePolicy1Code
7 [0..1 C2 Maximum number of online transactions
MaximumNumber ] (debit and credit) used as trigger for batch
transfer. Failed, declined or cancellations are
not included in the number of transactions,
but debit (or credit) which are cancelled are
part of the counting.
Mandatory if at least one ExchangePolicy =
"NumberLimit" exists, otherwise absent.
<MaxNb>::Number
7 [0..1 C3 Maximum cumulative amount of online
MaximumAmount ] transactions (debit and credit) used as
trigger for batch transfer. Failed, declined or
cancellations are not included in the
cumulative amount, but debit (or credit) which
are cancelled are part of the cumulative
amount.
Mandatory if at least one ExchangePolicy =
"TotalLimit" exists, otherwise absent.
For instance a credit of 10 € and a debit of 8
€ imply a cumulative amount of 18 €.
<MaxAmt>::ImpliedCurrencyAndAmount
7 [0..1 Retry after a failed batch transfer
ReTry ]
<ReTry>
8 [1..1 Time between two successive attempts after
] a failed batch transfer.
Delay
Format: MMDDhhmm; leading zeros may be
omitted.
<Dely>::Max9NumericText
[0..1 Maximum number of attempts.
]
MaximumNumber <MaxNb>::Number
7 [0..1 C4 Mandatory if at least one ExchangePolicy =
TimeCondition ] "Cyclic" exists, otherwise absent.
<TmCond>
8 [0..1 C4 Date and time after which Batch transfer is
] allowed
StartTime
<StartTm>::ISODateTime
8 [0..1 Date and time after which Batch transfer is
141 Page 68
142 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
<Prd>::Max9NumericText
6 [0..1 C5 Configuration of the completion exchange.
CompletionExchange ]
Mandatory if FinancialCapture equals to
"Completion", otherwise optional. .
<CmpltnXchg>
7 [1..*] * Policies for a completion exchange. Allowed
ExchangePolicy values are:
C6
"AsGroup": All completion messages are
C7
sent as a series of messages if the trigger
C8 in TimeCondition is met.
"Immediately": Exchange starts after the
online transaction
"NumberLimit": Exchange starts after a fixed
number of online transactions is reached.
MaximumNumber must be present
otherwise the exchange starts immediately.
"OnDemand": Exchange only occurs when
CompletionRequired in the
AcceptorAuthorisationResponse message
is set to "True". This value is allowed only if
FinancialCapture is different from
"Completion". If no other ExchangePolicy is
present, OnDemand must be present. The
ExchangePolicy “OnDemand” must always
be allowed on the POI even if this policy is
not present.
"TotalLimit": Exchange starts as a group of
transactions after the online transaction
totals exceed a certain amount limit.
MaximumAmount must be present
otherwise the exchange starts immediately.
Each combination of these policies is
allowed.
<XchgPlcy>::ExchangePolicy1Code
7 [0..1 C6 Maximum number of online transactions used
MaximumNumber ] as trigger for completions sent as group of
messages.
Mandatory if at least one ExchangePolicy =
"NumberLimit" exists, otherwise absent.
143 Page 69
144 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
<MaxAmt>::ImpliedCurrencyAndAmount
7 [0..1 Definition of retransmissions for completion
ReTry ] exchange
<ReTry>
8 [1..1 Time period to wait between two successive
] attempts if the completion sending failed.
Delay
Format: MMDDhhmm, leading zeros may be
omitted.
<Dely>::Max9NumericText
[0..1 Maximum number of retransmissions
]
MaximumNumber <MaxNb>::Number
7 [0..1 C8 Mandatory if at least one ExchangePolicy =
TimeCondition ] "AsGroup" exists, otherwise must be absent.
<TmCond>
8 [0..1 C8 Date and time after which completion
] message is sent.
StartTime
<StartTm>::ISODateTime
8 [0..1 Date and time after which sending completion
] exchange is prohibited
EndTime
<EndTm>::ISODateTime
8 [0..1 C8 Period of time between the sending of 2
] completion messages.
Period
Format: MMDDhhmm, leading zeros may be
omitted.
<Prd>::Max9NumericText
7 [0..1 default "False"
ExchangeFailed ]
This flag indicates that Completion messages
of failed transactions have to be exchanged (
<XchgFaild>::TrueFalseIndicator
7 [0..1 default "False"
ExchangeDeclined ]
This flag indicates that Completion messages
of online declined transactions, or declined
145 Page 70
146 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
<XchgDclnd>::TrueFalseIndicator
6 [0..1 default "Advice"
CancellationExchange ]
Configuration of the cancellation exchanges
for online authorised transactions.
“NotAllowed” Card payment transaction
cannot be cancelled by the
acquirer.
“Advice” Card payment transaction may
be cancelled by an advice only.
“Request” Card payment transaction must
be cancelled by a cancellation
request exchange.
<CxlXchg>::CancellationProcess1Code
5 [0..1 Configuration for data capture and completion
OffLineTransaction ] procedure of offline authorised transactions
If absent, the financial capture of offline
transaction is not performed by the acquirer
protocol
<OffLineTx>
6 [1..1 * Definition of capture mechanism for offline
FinancialCapture ] C9 authorised transactions, allowed values:
"Completion": financial capture performed as
part of the completion exchange.
"Batch": financial capture performed by
batch transfer.
<FinCaptr>::FinancialCapture1Code
6 [0..1 C9 If Configuration of FinancialCapture is equal
BatchTransfer ] to "Batch", the structure must be present.
.
<BtchTrf>
7 [1..*] * Policy for a financial capture procedure by
ExchangePolicy batch:
C10
"Cyclic": Batch sent periodically according to
C11
TimeCondition
C12
"NumberLimit": Batch starts after a fixed
number of offline non-captured authorised
transactions reaches MaximumNumber .
"TotalLimit": Batch starts after the total
amount of offline non-captured authorised
transactions reaches MaximumAmount.
147 Page 71
148 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
<XchgPlcy>::ExchangePolicy1Code
7 [0..1 C10 Maximum number of offline transactions
MaximumNumber ] (debit and credit) used as trigger for batch
transfer. Failed, declined or cancellations are
not included in the number of transactions,
but debit (or credit) which are cancelled are
part of the counting.
Mandatory if at least one ExchangePolicy =
"NumberLimit" exists, otherwise absent.
<MaxNb>::Number
7 [0..1 C11 Maximum cumulated amount of offline
MaximumAmount ] transactions (debit and credit) used as trigger
for batch transfer. Failed, declined or
cancellations are not included in the
cumulative amount, but debit (or credit) which
are cancelled are part of the cumulative
amount.
Mandatory if at least one ExchangePolicy =
"TotalLimit" exists, otherwise absent.
<MaxAmt>::ImpliedCurrencyAndAmount
7 [0..1 Retry after a failed batch transfer
ReTry ]
<ReTry>
8 [1..1 Time to wait between two successive
] attempts after a failed batch transfer.
Delay
Format: MMDDhhmm, leading zeros may be
omitted.
<Dely>::Max9NumericText
[0..1 Maximum number of attempts.
]
MaximumNumber <MaxNb>::Number
7 [0..1 C12 Mandatory if at least one ExchangePolicy =
TimeCondition ] "Cyclic" exists, otherwise absent.
<TmCond>
8 [0..1 C12 Date and time after which Batch transfer
149 Page 72
150 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
<Prd>::Max9NumericText
6 [0..1 * Configuration of the completion message
CompletionExchange ] exchange.
Mandatory if FinancialCapture is equal to
"Completion", otherwise optional. If the
structure CompletionExchange is absent and
the structure OfflineTransaction is present,
the ExchangePolicy of CompletionExchange
is considered to have the value
"Immediately".
<CmpltnXchg>
7 [1..*] Policies for a completion exchange. Allowed
ExchangePolicy C14 values are:
"Immediately": Exchange starts after the
offline transaction
"AsGroup": All completion messages are
sent as a series of messages if the trigger in
TimeCondition is met.
"AsSoonAsPossible": Exchange starts when
the communication resources become
available (e.g. for the next online
transaction if the connection with the
acquirer is down).
"NumberLimit": Exchange starts after a fixed
number of offline transactions is reached.
MaximumNumber must be present
otherwise the exchange starts immediately.
"TotalLimit": Exchange starts as a group of
transactions after the offline transaction
totals exceed a certain amount limit.
MaximumAmount must be present
otherwise the exchange starts immediately.
Each combination of "AsGroup",
"NumberLimit" and "TotalLimit" is allowed.
<XchgPlcy>::ExchangePolicy1Code
7 [0..1 C15 Maximum number of offline transactions to be
151 Page 73
152 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
<MaxNb>::Number
7 [0..1 C16 Maximum amount of offline transactions (sum
MaximumAmount ] of the totals for debit and credit transactions)
to be reached before completion messages
are sent as a group of messages.
Mandatory if at least one ExchangePolicy =
"TotalLimit" exists, otherwise absent.
<MaxAmt>::ImpliedCurrencyAndAmount
7 [0..1 Definition of retransmissions for completion
ReTry ] exchange.
<ReTry>
8 [1..1 Time period between two successive
] attempts if the completion sending has failed.
Delay
Format: MMDDhhmm, leading zeros may be
omitted.
<Dely>::Max9NumericText
[0..1 Maximum number of retries.
]
MaximumNumber <MaxNb>::Number
7 [0..1 C17 Mandatory if at least one ExchangePolicy =
TimeCondition ] "AsGroup" exists, otherwise must be absent.
<TmCond>
8 [0..1 Date and time after wich a completion
] messages should be sent.
StartTime
<StartTm>::ISODateTime
8 [0..1 Date and Time after which Completion
] Exchange is prohibited
EndTime
<EndTm>::ISODateTime
8 [0..1 Period between 2 exchanges of messages by
] group.
Period
Format: MMDDhhmm, leading zeros may be
omitted.
<Prd>::Max9NumericText
[0..1 default "False"
ExchangeFailed ]
This flag indicates that Completion messages
of failed offline transactions have to be
153 Page 74
154 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
exchanged.
<XchgFaild>::TrueFalseIndicator
[0..1 default "False"
ExchangeDeclined ]
This flag indicates that Completion messages
of offline declined transactions have to be
exchanged.
<XchgDclnd>::TrueFalseIndicator
[0..1 default "Advice"
CancellationExchange ]
Configuration of the cancellation exchanges
for offline authorised transactions.
“NotAllowed” Card payment transaction
cannot be cancelled by the
merchant.
“Advice” Card payment transaction may
be cancelled by an advice only.
“Request” Card payment transaction must
be cancelled by a cancellation
request exchange.
<CxlXchg>::CancellationProcess1Code
5 [0..1 Configuration of reconciliation exchange. If
ReconciliationExchange ] the structure is absent, the ExchangePolicy of
ReconciliationExchange is considered to
have the value "None".
<RcncltnXchg>
6 [1..*] C18 Policies for the reconciliation exchange,
ExchangePolicy allowed values:
“Cyclic": Reconciliation is exchanged
periodically according to the
TimeCondition.
"None": Reconciliation is never exchanged.
"NumberLimit": Reconciliation is exchanged
after a fixed number of transactions. The
element MaximumNumber must be present
to define the maximum number otherwise
the message exchange is started
immediately.
"OnDemand": Reconciliation is exchanged at
the choice of the Acceptor. If no other
ExchangePolicy is present, OnDemand
must be present. The ExchangePolicy
“OnDemand” must always be allowed on
the POI even if this policy is not present.
"TotalLimit": Reconciliation is exchanged if
the total amount of transactions exceeds a
155 Page 75
156 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
<XchgPlcy>::ExchangePolicy1Code
6 [0..1 C19 Maximum number of all transactions (debit
MaximumNumber ] and credit) as trigger for reconciliation. Failed,
declined or cancellations are not included in
the number of transactions, but debit (or
credit) which are cancelled are part of the
counting.
Mandatory if at least one ExchangePolicy =
"NumberLimit" exists, otherwise absent.
<MaxNb>::Number
6 [0..1 C20 Maximum cumulative amount of all
MaximumAmount ] transactions (debit and credit) as trigger for
reconciliation. Failed, declined or
cancellations are not included in the
cumulative amount, but debit (or credit) which
are cancelled are part of the cumulative
amount.
Mandatory if at least one ExchangePolicy =
"TotalLimit" exists, otherwise absent.
<MaxAmt>::ImpliedCurrencyAndAmount
6 [0..1 Definition of retransmissions for reconciliation
ReTry ] exchange.
<ReTry>
7 [1..1 Time period to wait between two successive
Delay ] attempts if the reconciliation sending has
failed.
Format: MMDDhhmm, leading zeros may be
omitted.
<Dely>::Max9NumericText
[0..1 Maximum number of retries.
MaximumNumber ]
<MaxNb>::Number
6 [0..1 C21 Timing conditions for reconciliation exchange.
TimeCondition ]
Mandatory if at least one ExchangePolicy =
"Cyclic" exists, otherwise absent.
<TmCond>
7 [0..1 Date and time after which a reconciliation
157 Page 76
158 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
<StartTm>::ISODateTime
7 [0..1 Date and time after which a Reconciliation is
EndTime ] prohibited. If the transaction capture is made
through completion, this parameter should
not be set to avoid uncaptured transactions
unless the POI is to be taken out of service.
<EndTm>::ISODateTime
7 [0..1 Period between 2 reconciliation exchanges.
Period ]
Format: MMDDhhmm, leading zeros may be
omitted.
<Prd>::Max9NumericText
5 [0..1 Indicator whether reconciliation period will be
ReconciliationByAcquirer ] defined by the acquirer. In this case the
acquirer protocol response message must
contain the ReconciliationIdentifier.
default “False”
<RcncltnByAcqrr>::TrueFalseIndicator
5 [0..1 Indicator whether reconciliation totals have to
TotalsPerCurrency ] be calculated per currency.
default “False”
<TtlsPerCcy>::TrueFalseIndicator
5 SplitTotals [0..1 default "False"
]
The flag indicates that totals in reconciliation
or batch must be split per POIGroup and
CardProductProfile according to the presence
of these informations in the messages of the
transaction.
<SpltTtls>::TrueFalseIndicator
5 [0..1 After an error in a totals of the Reconciliation,
ReconciliationError ] the POI sends transactions in error in the
BatchTransfer messages.
default “False”
<RcncltnErr>::TrueFalseIndicator
5 [0..1 default "False"
CardDataVerification ]
When True, an AcceptorCompletionAdvice
following an authorisation exchange must
contain either CardProtectedData or
PlainCardData.
159 Page 77
160 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
If False, an AcceptorCompletionAdvice
following an authorisation exchange must not
contain CardProtectedData and
PlainCardData.
<CardDataVrfctn>::TrueFalseIndicator
5 [0..1 default: "False"
NotifyOffLineCancellation ]
Send a cancellation advice for offline
transactions not yet captured.
<NtfyOffLineCxl>::TrueFalseIndicator
5 [0..*] C24 Types of transaction to be present in batch
BatchTransferContent transfer, a combination of one or several
following values:
"DebitCredit": Debit and credit transactions
must be included in the batch.
""Cancellation": Cancellation transactions
must be included in the batch.
"Declined": Non financial declined
transactions must be included in the batch
(i.e. not forced by the merchant).
"Failed": Non financial failed transactions
must be included in the batch.
<BtchTrfCntt>::BatchTransactionType1Code
5 [0..1 default "False"
FileTransferBatch ]
BatchTransfer are exchanged per file transfer
protocol rather than per message.
<FileTrfBtch>::TrueFalseIndicator
5 [0..1 default "False"
BatchDigitalSignature ]
BatchTransfer are authenticated by digital
signature rather than a MAC (Message
Authentication Code).
<BtchDgtlSgntr>::TrueFalseIndicator
5 [0..*] List of message elements and components to
MessageItem be present in the acquirer protocol (see
section 5.3).
<MsgItm>
6 [1..1 Identification of the message element present
ItemIdentification ] in one or several messages of the acquirer
protocol. This is an absolute path (i.e. starting
by the message envelope) or a relative path
to the message element with the XML tags
separated by the character '/' (e.g. the
absolute path
161 Page 78
162 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
<ItmId>::Max140Text
6 [1..1 C25 Condition of presence of the related message
Condition ] element, allowed values:
C26
"NotSupported": Message item must be
C27
absent.
*
"Mandatory": Message item must be present
with the POI value.
"ConfiguredValue": Message item must be
present with the content of Value. The
message item must not represent an XML
structure.
.
"AllowedValues": Message item is present
with the content of one of Values. The
message item must not represent an XML
structure.
"IfAvailable": Message item has to be
present if the data is available in the
application.
<Cond>::MessageItemCondition1Code
6 [0..*] C25 Value to be used for the related message
Value element.
C26
C27 Must be absent for the values
"NotSupported", "Mandatory"and "IfAvailable"
of Condition.
Mandatory but not repeated for the value
"ConfiguredValue" of Condition.
Mandatory with possible repetitions for the
value "AllowedValues" of Condition.
<Val>::Max140Text
5 [1..1 "True": Acquirer protocol messages must
ProtectCardData ] protect sensitive card data using the
ProtectedCardData alternative.
"False": Acquirer protocol messages do not
protect sensitive card data using the
PlainCardData alternative.
<PrtctCardData>::TrueFalseIndicator
5 [0..1 <PrvtCardData>::TrueFalseIndicator
PrivateCardData ]
5 [0..1 To set/unset security trailer in acquirer
163 Page 79
164 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
<MndtrySctyTrlr>::TrueFalseIndicator
4 [0..*] Configuration parameters under the
MerchantParameters responsibility of the merchant.
<MrchntParams>
5 ActionType [1..1 C23 Type of action for the configuration
] parameters.
<ActnTp>::TerminalManagementAction3Cod
e
5 [0..1 Identification of the merchant for the MTM, if
MerchantIdentification ] the POI manages several merchants.
<MrchntId>::Max35Text
5 Version [0..1 Version of the merchant parameters.
]
<Vrsn>::Max256Text
5 [0..1 Format of the content of OtherParameters.
ParameterFormatIdentifier ]
<ParamFrmtIdr>::Max8Text
5 Proxy [0..1 Local proxy configuration.
]
Based on type NetworkParameters.
<Prxy>
5 [0..1 Merchant parameters.
OtherParameters ]
<OthrParams>::Max10000Binary
4 [0..*] C23 Manufacturer configuration parameters of the
TerminalParameters POI.
<TermnlParams>
5 ActionType [1..1 Type of action for the configuration
] parameters.
<ActnTp>::TerminalManagementAction3Cod
e
5 [0..1 Identification of the vendor for the MTM, if the
VendorIdentification ] POI manages various subsets of terminal
parameters.
<VndrId>::Max35Text
5 Version [0..1 Version of the terminal parameters.
]
<Vrsn>::Max256Text
5 [0..1 Format of the content of OtherParameters.
165 Page 80
166 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
<ClckSynctn>
6 [1..1 Name of the time zone where is located the
POITimeZone ] POI, as definined by the IANA (Internet
Assigned Number Authority) time zone data
base.
<POITmZone>::Max70Text
6 [0..*] Parameters to contact a time server.
SynchronisationServer
Based on type NetworkParameters.
<SynctnSvr>
6 [0..1 <Dely>::ISOTime
Delay ]
5 [0..*] Time zone line to update in the time zone
TimeZoneLine data base subset stored in the POI. The
format of the line is conform to the IANA
(Internet Assigned Number Authority) time
zone data base.
<TmZoneLine>::Max70Text
5 [0..*] Local time offset to UTC (Coordinated
LocalDateTime Universal Time).
<LclDtTm>
6 [0..1 Date time of the beginning of the period
FromDateTime ] (inclusive).
<FrDtTm>::ISODateTime
6 [0..1 Date time of the end of the period (exclusive).
ToDateTime ]
<ToDtTm>::ISODateTime
6 [1..1 UTC offset in minutes, of the local time during
UTCOffset ] the period. For instance, 120 for Central
European Time, -720 for Central Standard
Time (North America).
<UTCOffset>::Number
5 [0..1 Others manufacturer configuration
OtherParameters ] parameters of the point of interaction.
<OthrParams>::Max10000Binary
167 Page 81
168 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
<ApplParams>
5 ActionType [1..1 C23 Type of action for the configuration
] parameters.
<ActnTp>::TerminalManagementAction3Cod
e
5 [1..1 Identification of the application defined by the
ApplicationIdentification ] TMS, vendor, merchant or acquirer (e.g. used
for message element POIComponent.Model)
<ApplId>::Max35Text
5 Version [0..1 Appli Version of the application parameters (e.g.
] used for message element
POIComponent.VersionNumber)
<Vrsn>::Max256Text
5 [0..1 Format of the content of Parameters or the
ParameterFormatIdentifier ] deciphered content of EncryptedParameters.
<ParamFrmtIdr>::Max8Text
5 Parameters [0..*] C22 Contents of the parameters.
If this data element is absent,
EncryptedParameters must be present.
<Params>::Max100KBinary
5 [0..1 C22 Sensitive parameters (sequence of
EncryptedParameters ] Parameters including the component
identifier) encrypted with a cryptographic key,
using CMS ContentType "EnvelopedData".
If this data element is absent, at least one
occurrence of Parameters must be present.
<NcrptdParams>
[0..*] Configuration parameters related to the
HostCommunication- communication with an acquirer host or a
Parameters terminal manager host.
<HstComParams>
5 ActionType [1..1 C23 Type of action for the configuration
] parameters.
<ActnTp>::TerminalManagementAction3Cod
e
5 [1..1 Identification of the host operated by the
HostIdentification ] acquirer or intermediate agent.
169 Page 82
170 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
<Adr>
5 Key [0..*] Cryptographic key to be used for message
element protection (see section Host
Communication Parameters
<Key>
6 [1..1 Identification of the cryptographic key.
KeyIdentification ]
<KeyId>::Max140Text
6 [1..1 Version of the cryptographic key.
KeyVersion ]
<KeyVrsn>::Max140Text
6 [0..1 Number of usages of the cryptographic key.
SequenceNumber ]
<SeqNb>::Number
6 [0..1 Identification used for derivation of a unique
DerivationIdentification ] key from a master key provided for the data
protection.
<DerivtnId>::Min5Max16Binary
6 [0..1 Type of algorithm used by the cryptographic
Type ] key.
<Tp>::CryptographicKeyType3Code
6 [0..*] Allowed usage of the key.
Function
<Fctn>::KeyUsage1Code
5 [0..1 Access information to reach an intermediate
NetworkServiceProvider ] network service provider.
Based on type NetworkParameters.
<NtwkSvcPrvdr>
5 [0..1 <PhysIntrfc>
PhysicalInterface ]
6 [1..1 <IntrfcNm>::Max35Text
InterfaceName ]
6 [0..1 <IntrfcTp>::POICommunicationType2Code
InterfaceType ]
6 [0..1 <UsrNm>::Max35Text
UserName ]
6 [0..1 <AccsCd>::Max35Binary
AccessCode ]
6 [0..1 <SctyPrfl>::Max35Text
171 Page 83
172 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
<SctyParams>
5 ActionType [1..1 C23 Type of action for the configuration
] parameters.
<ActnTp>::TerminalManagementAction3Cod
e
5 Version [1..1 Version of the security parameters.
]
<Vrsn>::Max256Text
5 [0..1 Challenge generated by the POI in the
POIChallenge ] StatusReport requesting security parameters
data set.
<POIChllng>::Max140Binary
5 [0..1 Challenge generated by the Terminal
TMChallenge ] Manager to be sent by the POI in the
StatusReport reporting the result of the
security parameters data set download and
installation.
<TMChllng>::Max140Binary
5 [0..*] Based on type CryptographicKey.
SecurityElement
<SctyElmt>
4 [0..*] <SaleToPOIParams>
SaleToPOIParameters
5 ActionType [1..1 <ActnTp>::TerminalManagementAction3Cod
] e
5 [0..1 <MrchntId>
MerchantIdentification ]
6 [1..1 <CmonNm>::Max70Text
CommonName ]
6 [0..1 <Adr>::Max140Text
Address ]
6 [1..1 <CtryCd>::ISO3NumericCountryCode
CountryCode ]
6 [1..1 <MrchntCtgyCd>::Min3Max4Text
MerchantCategoryCode ]
6 [1..1 <RegdIdr>::Max35Text
RegisteredIdentifier ]
5 Version [1..1 <Vrsn>::Max256Text
]
173 Page 84
174 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
<SctyTrlr>
866
175 Page 85
176 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
177 Page 86
178 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
910
911 Figure 3 Parameters management with multiple TM
912
913 So in order to allow multiple TMs to send parameters to POI, the following rules apply:
914 6. If a POI receives a CREATE for a type of Parameter (TMSProtocolParameters,
915 AcquirerProtocolParameters, MerchantParameters, TerminalParameters, ApplicationParameters,
916 HostCommunicvationParameters, SecurityParameters, SaleToPOIParameters) from a TM with
917 previous received parameters of this type, the POI must replace all Parameter of this type coming
918 from this TM. Considering the previous figure as the data structure, previous parameters present in
919 the set identified by the TM identification are deleted and replaced by new ones.
920 7. If a POI receives a CREATE for a type of Parameter (TMSProtocolParameters,
921 AcquirerProtocolParameters, MerchantParameters, TerminalParameters, ApplicationParameters,
922 HostCommunicvationParameters, SecurityParameters, SaleToPOIParameters) from a TM with no
923 previous received parameters of this type, the POI must create all Parameter of this type coming
924 from this TM. Considering the previous figure as the data structure, a new set of parameter identified
925 by the TM Identification is created.
926 8. If a POI receives an UPDATE for a type of Parameter (TMSProtocolParameters,
927 AcquirerProtocolParameters, MerchantParameters, TerminalParameters, ApplicationParameters,
928 HostCommunicvationParameters, SecurityParameters, SaleToPOIParameters) from a TM with no
929 previous received parameters of this type, the POI must create all Parameter of this type coming
930 from this TM. Considering the previous figure as the data structure, a new set of parameter identified
931 by the TM Identification is created
932 9. If a POI receives an UPDATE for a type of Parameter (TMSProtocolParameters,
933 AcquirerProtocolParameters, MerchantParameters, TerminalParameters, ApplicationParameters,
934 HostCommunicvationParameters, SecurityParameters, SaleToPOIParameters) from a TM with
935 previous received parameters of this type. If the keyIdentification (MerchantIdentification,
936 VendorIdentification, ApplicationIdentification, HostIdentification) is not known by the POI, the POI
937 must reject the whole set of received Parameters as an “InvalidContent. Considering the previous
938 figure as the data structure, the whole structure is unchanged
939 10. If a POI receives an UPDATE for a type of Parameter (TMSProtocolParameters,
940 AcquirerProtocolParameters, MerchantParameters, TerminalParameters, ApplicationParameters,
941 HostCommunicvationParameters, SecurityParameters, SaleToPOIParameters) from a TM with
942 previous received parameters of this type. If the keyIdentification (MerchantIdentification,
943 VendorIdentification, ApplicationIdentification, HostIdentification) is already known by the POI, ”. the
944 POI must update this Parameter identification of this type with the one coming from this TM.
179 Page 87
180 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
945 Considering the previous figure as the data structure, the parameter identified by the key
946 Identification is replaced.
947 11. CREATE and UPDATE are identical for TMSProtocolParameters or SecurityParameters.
948
953 5.3.1 Configuration of Data Capture and Completion for Online Transactions
954 OnlineTransaction is used for financial data capture, batch transfer and completion exchange configuration.
958
959 If FinancialCapture contains another value than the first three values listed above, the complete DataSet
960 must be ignored and the action may be stored in the log of Event with Result populated with "InvalidContent"
961 and AdditionalErrorInformation containing the text value "OnlineTransaction.FinancialCapture". The value of
962 FinancialCapture before update must be used then if present.
963
181 Page 88
182 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
1013
183 Page 89
184 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
1014 If ExchangePolicy contains a value different from the values listed above; the configuration must be ignored
1015 and the action may be stored in Event with Result containing "InvalidContent" and AdditionalErrorInformation
1016 containing the text value "CompletionExchange.ExchangePolicy".
1017 If ExchangePolicy contains the value "AsGroup"; StartTime and Period in TimeCondition are used to define
1018 the timing of the cyclic completion exchange. If one of these elements is missing, the configuration of the
1019 completion exchange contains an error. The complete DataSet must be ignored and the error may be stored
1020 in the log of Event with Result containing "InvalidContent" and AdditionalErrorInformation containing the text
1021 value "CompletionExchange.TimeCondition".
1022 ReTry may be present to define the maximum number of and the delay for retransmissions of completion
1023 messages.
1024 All other elements of the component TimeCondition that are not used for the present exchange policies will
1025 be ignored.
1026
1027 5.3.2 Configuration of Data Capture and Completion for Offline Transactions
1028 OfflineTransaction determines the data capture mechanism, batch transfer and completion exchange
1029 configuration for offline transactions.
1033
1034 The current value of FinancialCapture is used if it belongs to the above table.
1035 If FinancialCapture contains a different value from the two first ones listed above, the complete DataSet must
1036 be ignored and the action may be logged in Event with Result containing "InvalidContent" and
1037 AdditionalErrorInformation containing the text value "OfflineTransaction.FinancialCapture".
1038
185 Page 90
186 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
1045
1051
1052 If ExchangePolicy contains a different value from the values listed above, the configuration must be ignored
1053 and the action may be logged in Event with Result containing "InvalidContent" and
1054 AdditionalErrorInformation containing the text value "OfflineTransactions.ExchangePolicy".
1055
1056 If ExchangePolicy contains the value "AsGroup", the message elements StartTime and Period in
1057 TimeCondition are used to define the timing of the completion exchange.
1058 ReTry may be used to define the maximum number of and the delay for retransmissions of completion
1059 advices.
1060 All other elements of TimeCondition which are not used for the present exchange policies must be ignored.
1061
1062 If ExchangePolicy contains either “NumberLimit” or “TotalLimit”, the trigger are evaluated regardless of any
1063 other value of ExchangePolicy. Then in case of coexistence, the smaller must trig the ExchangePolicy.
1064 If ExchangePolicy contains a time condition, the set of CompletionAdvice must be sent, the time condition for
1065 OnlineTransaction and OfflineTransaction should be identical.
1066
187 Page 91
188 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
NumberLimit After a fixed number of transactions. The element MaximumNumber must be present to define the
maximum otherwise the reconciliation is not performed.
TotalLimit If transaction totals exceed a limit of amount. The element MaximumAmount must be present
otherwise the reconciliation is not performed.
OnDemand Reconciliation exchange is performed at the choice of the Acceptor.
1072
1073 If one of the occurrences of ExchangePolicy contains a value different from the values listed above, the
1074 configuration must be ignored and the action may be stored in the log of Event with Result containing
1075 "InvalidContent" and AdditionalErrorInformation containing the text value
1076 "ReconciliationExchange.ExchangePolicy".
1077 If the ReconciliationExchange configuration is missing and ExchangePolicy has not been configured before,
1078 ReconciliationExchange.ExchangePolicy has to be considered as "None".
1079 TimeCondition is only present in case of one of the elements ExchangePolicy contains the value "Cyclic".
1080 Otherwise the component TimeCondition must be absent.
1081
1087
189 Page 92
190 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
1100 For each message item, Condition defines the behaviour of the message element in the acquirer protocol.
1101 The condition is valid for all relevant messages sent to the acquirer identified in
1102 AcquirerProtocolParameters.AcquirerIdentification. Following values of the Condition are allowed:
1103
Value Usage
AllowedValues Recipient supports only a set of values defined in the value list..
IfAvailable Message element is sent if it is available in the payment application.
Mandatory Message element must be present in the acquirer protocol message.
NotSupported Message element is not supported by the recipient.
ConfiguredValue Message element is mandatory and takes the specific value defined in the element Value. The
POI uses this specific value for each message without any control, after configuration or during
message preparation,on the POI regarding the value. To configure message element which are
not defined as text, the received Value will be converted by the POI as a direct conversion from
text to the format of the message elment (e.g Text to Numeric or Text to IsoDateTime). It's up to
the TMS to manage correct values and format, meaning that no additional process is required
on the POI if the text conversion failed, leading to a possible message creation or reception
failure.
1104
1105 As a genral rule, there is no specific test regarding messageItem. So it's up to the one who set messageItem values to
1106 verify that the resulting message will be a valid one (e.g NotSupported is not consistant with a mandatory message
1107 element).
1108
1116
1117 The repeatable element Address contained in the element Address is described as follow.
1118
Data element Usage
NetworkType Type of network used for the connection (e.g. Ethernet, PSTN, GPRS,…)
AddressValue Value which identifiy the access in the given network ( e.g for Ethernet : IP address +
port,…)
191 Page 93
192 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
1119
The TMS is responsible for the configured value. The POI will provide it as is.
1139
1140 There is no specific test regarding messageItem. So it's up to the one who set messageItem values to verify that the
1141 resulting message will be valid.
1142
1143
193 Page 94
194 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
1144
ItemIdentification Allowed Config Comments
/StsRpt/StsRpt/InitgTrggr/AddtlInf Configured Values For TMS expecting the
identification of the
StatusReport after a
delegation process
/StsRpt/StsRpt/DataSet/Cntt/POICpblties Mandatory For TMS acting only on
parameter downloading
NotSupported
/StsRpt/StsRpt/DataSet/Cntt/POICmpnt Allowed Values For TMS acting only on
parameter downloading
Mandatory
Not Supported
/StsRpt/StsRpt/DataSet/Cntt/POICmpnt/SubTpInf Allowed Values To filter and keep the
size of status report as
Mandatory
short as possible.
Configured Values
Not Supported
/StsRpt/StsRpt/DataSet/Cntt/Evt Allowed Values For TMS acting only on
parameter downloading
Mandatory
Not Supported
/StsRpt/StsRpt/DataSet/Cntt/Errs Mandatory For TMS acting only on
parameter downloading
NotSupported
/StsRpt/SctyTrlr Mandatory To mandate
SecurityTrailer from a
NotSupported
POI managed by TMS
which don't support
SecurityTrailer.
/CertMgmtReq/CertMgmtReq/CertSvc Allowed Values
Configured Values
/CertMgmtReq/CertMgmtReq/SctyDomn Allowed Values
Mandatory
Not Supported
Configured Values
/CertMgmtReq/CertMgmtReq/BinryCertfctnReq Mandatory Then only one mode
could be supported.
NotSupported
/CertMgmtReq/CertMgmtReq/CertfctnReq Mandatory Then only one mode
could be supported.
NotSupported
/CertMgmtReq/SctyTrlr Mandatory To mandate
SecurityTrailer from a
NotSupported
POI managed by TMS
which don't support
SecurityTrailer.
1145
195 Page 95
196 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
197 Page 96
198 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
199 Page 97
200 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
1159
1188 In the nexo Acquirer Protocol, some messages refer to AcquirerParameters, this message element must be
1189 understood as the group of parameters made by grouping AcquirerProtocolParameters,
1190 HostCommunicationParameters, ApplicationParameters and MerchantParameters received with the same
1191 DataSet.Identification.
1192
1193
201 Page 98
202 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
1203 When receiving an AcceptorConfigurationUpdate with an ActionType equals to DELETE, the parameter set
1204 is removed from the POI regardless of its state (active or inactive).
1205 If a received parameter set is not valid, it is not stored, installed or activated.
1206
1207 According to explanations present in various chapter of this document, the way to manage ActionType
1208 CREATE or UPDATE is reminded here after.
1209 For parameters which does not already exist on terminal, Action.Type CREATE or UPDATE are both
1210 accepted and have the same result in creating the parameter set on the terminal.
1211 For parameters which already exist on terminal, Action.Type CREATE or UPDATE are both accepted
1212 CREATE will replace the whole parameter set with the data sent
1213 UPDATE will only change or add parameters received to the existing parameter set on the terminal.
1214
1215 @startuml
1216 [*] --> Received : ACU received
1217 Received --> [*] : ACU checked KO
1218 Received --> Active : ACU checked OK & existing same active parameter
1219 Received --> Active : ACU checked OK & non existing same parameter
1220 Received --> Inactive : ACU checked OK & existing same inactive parameter
1221 Inactive --> [*] : ACU delete
1222 Active --> [*] : ACU delete
1223 Active --> Inactive : ACU deactivate
1224 Inactive --> Active : ACU activate
1225 Received : update status for next Status report
1226 Active : update status for next Status report
1227 Inactive : update status for next Status report
203 Page 99
204 CAPE Terminal Management Message Usage Guide Version 8.0 – 2nd March 2020
1229 @enduml
1230
1231 Figure 4 Parameters lifecycle on POI
1232
1233
1249
1250
1251 @startuml
1252 [*] --> Initial
1253 Initial : parameter set declaration
1254 Initial : parameter input
1255 Initial --> Validated : Actor validation
1256 Validated : result = parameter validity check
1257 Validated : version = CreationDateTime
1258 Validated : update ManagementPlanReplacement
1259 Validated --> Planned : ManagementPlanReplacement
1260 note right on link
1261 Note : change in managementPlan Replacement occurs
1262 when the StatusReport received from POI shows a CreationDateTime
1263 of the parameter set which is less than the one recorded in TMS
1264 end note
1265 Planned : POI status = notified
1266 Planned --> Sent : AcceptorConfigurationUpdate
1267 Sent : POI status = downloaded
1268 Activated: POI status = activated
1269 Activated --> Initial : parameter set changes\
1270 by TMS operator
1271 Sent --> [*] : removed from StatusReport \
1272 after deletion command
1273 Sent --> Deactivated : StatusReport = deactivated
1279 @enduml
1280
1281 Figure 5 Parameters lifecycle on TMS
1282
1291
1292 Figure 6: Rejection of a TMS message
1293
1294 The TerminalManagementRejection message contains the reason of the rejection (RejectReason), some
1295 additional information on the rejection (AdditionalInformation) for further analysis, and the rejected message
1296 itself (MessageInError) which may be compared to the message sent.
1297
1298 The TerminalManagementRejection message must be sent in the following cases:
1299
1300 1. The envelope of the received message is incorrect.
1301 RejectReason contains the value InvalidMessage. It is recommended to include the optional fields
1302 AdditionalInformation to provide the details of the error. MessageInError contains the received message
1303 with the error.
1304
1305 2. The rejected message cannot be decoded properly; the syntax or the semantic is
1306 invalid.
1307 RejectReason contains the value ParsingError. It is recommended to include the optional fields
1308 AdditionalInformation to provide the details of the decoding error. MessageInError contains the received
1309 message with the coding error.
1310
1311 3. The identification of the rejected message is invalid.
1312 RejectReason contains the value InitiatingParty or RecipientParty. No other field is required.
1313 AdditionalInformation may contain the invalid identifier.
1314
1315 4. The verification of the security of the rejected message fails.
1316 RejectReason contains the value Security. It is recommended to include the optional fields
1317 AdditionalInformation to provide the details of the security error. MessageInError contains the received
1318 message with the security error.
1319
1320 5. The rejected type of message is not supported by the RecipientParty, and then the
1321 RecipientParty is not able to send a message response to the InitiatingParty.
1322 RejectReason contains the value MessageType. No other field is required. AdditionalInformation may
1323 contain the invalid MessageFunction value.
1324
1325 6. The version of the protocol used for the message (Header.FormatVersion) is not
1326 supported by the RecipientParty which is not able to send a message response of this version to the
1327 InitiatingParty.
1328 RejectReason contains the value ProtocolVersion and AdditionalInformation the invalid protocol version.
1329
1330 7. The RecipientParty is not able to process the message for lack of resources. For
1331 that reason, a message response could not be built and the message is not processed.
1332 RejectReason has the value UnableToProcess. AdditionalInformation contains the reason for which the
1333 message could not be processed.
1334
1335 8. The RecipientParty must not respond to a received TerminalManagementRejection.
1336
1337 The reaction of the InitiatingParty to a TerminalManagementRejection message depends on the
1338 RejectReason and the type of rejected message.
1339
1340
<FrmtVrsn>::Max6Text
2 ExchangeIdentification [0..1 Copy from the request if successfully
] extracted
<XchgId>::Number
2 CreationDateTime [1..1 See StatusReport
]
<InitgPty>
3 Identification [1..1 <Id>::Max35Text
]
3 Type [0..1 <Tp>::PartyType5Code
]
3 Issuer [0..1 <Issr>::PartyType6Code
]
3 Country [0..1 <Ctry>::Min2Max3AlphaText
]
3 ShortName [0..1 <ShrtNm>::Max35Text
]
2 RecipientParty [0..1 Copy from the request if successfully
] extracted, otherwise absent.
<RcptPty>
3 Identification [1..1 <Id>::Max35Text
]
3 Type [0..1 <Tp>::PartyType5Code
]
3 Issuer [0..1 <Issr>::PartyType6Code
]
3 Country [0..1 Appli <Ctry>::Min2Max3AlphaText
]
3 ShortName [0..1 <ShrtNm>::Max35Text
]
3 RemoteAccess [0..1 Access information to reach the target host.
]
Based on type NetworkParameters.
<RmotAccs>
1 Reject [1..1 <Rjct>
]
2 RejectReason [1..1 High level information allowing the sender to
] know the class of error, and to have different
processing.
InitiatingParty: Invalid identification data for
the sender InitiatingParty.
InvalidMessage: Invalid envelope
message.
MessageType: Type of message the
recipient receives is unknow or
unsupported.
ParsingError: Invalid message: At least
one of the data element or data structure
<RjctRsn>::RejectReason2Code
2 AdditionalInformation [0..1 Appli Additional information related to the sending
] of a reject message in response to a request
or an advice.
For logging purpose, in order to allow further
analysis, statistics and deferred processing
on the success or the failure of the request
processing.
<AddtlInf>::Max500Text
2 MessageInError [0..1 Appli Message (without transport header) received
] by the recipient which has been rejected and
produced this TerminalManagementRejection
message
<MsgInErr>::Max100KBinary
1344
1345 7 MaintenanceDelegation
1346
1397
Element Mult. Usage
DelegationProof
TMIdentification [1..1] Identifier of the TM given by the MTM
POISubset [0..*] Identification of a group of POI shared by the TM and the MTM
DelegationType [1..1] Allowed values are
Create
Delete
Update
StartDate [0..1] Activation date of the delegation
Default is the reception date
1398
1399
1428 Intermediate agent (processor) : management of some of the parameters on behalf of the acquirer
1429 (PIN encryption, communication)
1430 Service provider : create and operate certificates used for transport, be aware of POI managed
1431 (white lists)
1432
1433 POI terminal : receives all parameters related to its activity, checks delegation
1434
1435 Concentrator (POI server) : receives all parameters related to all equipments under its responsibility
1436 in a retail solution and dispatches parameters when needed to individual equipment
1437
1438 Scheme (issuer) : under the responsibility of acquirer => not to be part of TMS actors
1439
1440
1441
1442
1476 @enduml
1477 Figure 7 One POI multiple Identifications
1478
1494 The merchant may have to subscribe a contract with the acquirer. During this subscription the following
1495 element may be exchanged.
1496 Identification of the Terminal Estate Manager. Then the acquirer is able to check if it could reuse an
1497 existing delegation or if a new one has to be setup with the Terminal Estate Manager.
1498 Identification of the POIID and/or POISubset. To allow the acquirer to control the broadcast of its
1499 parameter and acess to its services.
1500
MTM A MTM B
TMid 1 TMid 1
TM 1 TM 1
TM 2 TM 3
TMA TMB
TMid 2 TMid 3
TM 1 TM 1
POI 1 POI 1
TM 2 TM 3
POI POI 1 POI 1 POI
Terminal Terminal
POIid 1 POIid 1
1528
1529 Figure 8 POI identification with delegation
1530
1531 Corollary 3-1: The TMSPOIIdentification must be unique inside the MTM realm
1532
1533 Rule 4: A given delegation is performed on a subset of the POI terminals belonging to the MTM.
1534 This subset is delimited and controlled by the MTM.
1535 This subset can be negotiated between the MTM and the TM that will perform the maintenance delegation.
1536 This subset can also be determined by some feature of the POI as the application.
1537
1538 The MTM control any delegation by allowing the creation, the update, or the removal of a delegation, with a
1539 specific action on the management plan of a POI:
1540 The MTM provides in the action the delegation proof in DelegationProof or ProtectedDelegationProof.
1541 This delegation proof must contain both the POIdentification and TMIdentification, with other elements
1542 related to the scope of the delegation.
1543 The POI forwards the delegation proof in the first Status Report to the delegated TM. The delegated TM is
1544 then able to verify that the POI belongs to the delegation subset.
1545
1546 Rule 5: DelegationProof is mandatory if there is no security between POI and TM and security is necessary
1547
1558
1559
1560
1576
1577 Figure 9 Creation of Key Download delegation
1578
1579 The TM and the MTM negotiate the identification of the TM, the subset of the POI, and the identification of
1580 the keys.
1581
1582 The TM sends first a MaintenanceDelegationRequest to the MTM containing:
1583 The TM identification provided by the MTM.
1584 DelegationType = Create
1585 MaintenanceService = KeyDownload
1586 TMRemoteAccess = TM Host address
1587 DelegationScopeIdentification (useful to identify the delegated maintenance function)
1588 SymmetricKey = the identification of the keys for which the management is delegated.
1593
1594 Then the MTM sends a MaintenanceDelegationResponse to the TM containing:
1595 Response = Approved/Declined.
1596 A copy of the following data element received in the request:
1597 DelegationType,
1598 MaintenanceService,
1599 DelegationScopeIdentification
1600
1601 In the following management plan of the subset of POI terminals part of the delegation, the MTM sends a
1602 ManagementPlanReplacement to the POI containing an Action using:
1603 Type = Download
1604 RemoteAccess = TM Host address where to send a StatusReport and get the management plan of
1605 the delegated TM.
1606 ComponentType = SecurityParameters (in the StatusReport)
1607 DelegationScopeIdentification
1608 DelegationScopeDefinition containing:
1609 The identification of the keys to manage
1610 ProtectedDelegationProof containing:
1611 The POI identification for the MTM.
1612 The TM identification provided by the MTM.
1613 Delegation type: Create
1614 MaintenanceService = KeyManagement
1615 DelegationScopeDefinition
1616 A digital signature of the proof
1617
1618 The POI receives the management plan with the delegation action:
1619 The POI stores the delegated action if the digital signature is valid.
1620 The POI performs the action, sending a StatusReport to the RemoteAccess using:
1621 The same POI identification as the MTM POIIdentification
1622 The identification of the TM in TerminalManagerIdentification
1623 The ProtectedDelegationProof received in the delegation action.
1624 A protection with a digital signature.
1625
1626 The delegated TM receives the StatusReport of the POI:
1627 Validates the delegation proof,
1628 May verify that the POI is part of the POI subset which has been delegated.
1629
1630 Then the POI:
1631 Receives the management plan of the TM, which is managed independently from the MTM
1632 management plan.
1633 Exchanges the keys identified in the scope of the delegation: the POI has to verify that the
1634 keys belong to this scope.
1635
1636
1637
1678
nRequest
Ma inte nan ceDeleg atio
Mainten an
StatusR eport ce Delega tio nR
espo nse
delegation action
t
ManagementPlanReplacemen
delegation action StatusReport
lacemen t
Ma nag ementPlanRep
1705
1706 Figure 10 Creation of Parameters Download delegation
1707
1708 The TM and the MTM negotiate the identification of the TM, the subset of the POI, and the identification of
1709 the parameters.
1710
1711 The TM sends first a MaintenanceDelegationRequest to the MTM containing:
1712 The TM identification provided by the MTM.
1713 DelegationType = Create
1714 MaintenanceService : one or more occurrences in (AcquirerProtocolParameters,
1715 ApplicationParameters, ApplicationParametersSubsetCreation, MerchantParameters,
1716 TerminalParameters, CertificateParameters)
1717 TMRemoteAccess = TM Host address
1718 DelegationScopeIdentification to identify the delegated maintenance function
1719 The identification of the parameters may be included in the DelegationScopeDefinition. In case of
1720 OpenDelegation , the delegation applies to any parameters of the delegated services.
1721 Certificate, if necessary for digital signature
1722
1723 Then the MTM sends a MaintenanceDelegationResponse to the TM containing:
1724 Response = Approved/Declined.
1725 A copy of the following data element received in the request:
1726 DelegationType,
1727 MaintenanceService,
1728 DelegationScopeIdentification
1729
1730 In the following management plan of the subset of POI terminals part of the delegation, the MTM sends a
1731 ManagementPlanReplacement to the POI containing an Action using:
1732 Type = Download
1733 RemoteAccess = TM Host address where to send a StatusReport and get the management
1734 plan of the delegated TM.
1735 ComponentType must be consistant with
1736 MaintenanceDelegationRequest.MaintenanceService
1737 DelegationScopeIdentification
1738 DelegationScopeDefinition containing:
1739 The identification of the parameters to manage
1740 ProtectedDelegationProof containing:
1741 The POI identification for the MTM.
1742 The TM identification provided by the MTM.
1743 Delegation type: Create
1744 MaintenanceService =applicationParameters
1745 DelegationScopeDefinition
1746 A digital signature of the proof
1747
1748 The POI receives the management plan with the delegation action:
1749 The POI stores the delegated action if the digital signature is valid.
1750 The POI performs the action, sending a StatusReport to the RemoteAccess using:
1751 The same POI identification as the MTM POIIdentification
1752 The identification of the TM in TerminalManagerIdentification
1753 The ProtectedDelegationProof received in the delegation action.
1754 A protection with a digital signature.
1755
1756 The delegated TM receives the StatusReport of the POI:
1757 Validates the delegation proof,
1758 May verify that the POI is part of the POI subset which has been delegated.
1759
1760 Then the POI:
1761 Receives the management plan of the TM, which is managed independently from the MTM
1762 management plan.
1763 Exchanges the parameters identified in the scope of the delegation: the POI has to verify
1764 that the parameters belong to this scope.
1765
1797
delegation actio n
ent
M anag em entP la nR epla cem
delegation actio n Statu sR epor t
ent
M anag em entP la nR epla cem
1820
1821 Figure 11 AcquirerParameters download delegation
1822
1823 Assumptions:
1863 The POI performs the action, sending a StatusReport to the RemoteAccess using:
1864 The same POI identification as the MTM POIIdentification
1865 The identification of the TM in TerminalManagerIdentification
1866 The DelegationProof protected or not received in the delegation action.
1867 A protection with a digital signature of the MTM (if present)
1868
1869 The delegated TM receives the StatusReport of the POI:
1870 Validates the signature of the message using the POI certificate
1871 May verify that StatusReport.POIIdentification is part of the POI subset sent in the
1872 MaintenanceDelegationRequest.
1873 Validates the delegation proof,
1874
1875 Then the POI:
1876 Receives the management plan of the TM, which is managed independently from the MTM
1877 management plan.
1878 Exchanges the AcquirerProtocolParameters (e.g. the host address for the acquirer).
Request
MaintenanceDelegation
MaintenanceDelegationResp
onse
Delegation Negotiation 2
MaintenanceDelegationResp
onse
StatusReport
t
ManagementPlanReplacemen
StatusReport
delegation action
ent
ManagementPlanReplacem
StatusReport
delegation action
ManagementPlanReplacement
1884
1885 Figure 12 ApplicationParameters download delegation
1886
1887 Assumptions:
1888 Security trailer is configured for any messages
1889 Both TM are able to check the relevant POI certificate
1890
1891 Workflow:
1892
1893 The TM1 sends a MaintenanceDelegationRequest to the MTM containing:
1894 The TM1 identification provided by the MTM.
1895 The POISubset contains the POI Identification assigned by the MTM (if known by TM1)
1896 DelegationType = Create
1897 MaintenanceService : contains “ApplicationParametersSubsetCreation”
1898 TMRemoteAccess = TM1 Host address
1899 DelegationScopeIdentification to identify the delegated maintenance function (e.g. ‘TM1 set of
1900 tables’)
1901 The identification of the parameters is included in the DelegationScopeDefinition. e.g. Table1,
1902 Table2, Table6)
1903
1904 Certificate of the TM1 for digital signature is verified by the MTM
1905
1906 Then the MTM sends a MaintenanceDelegationResponse to the TM1 containing:
1907 Response = Approved
1908 A copy of the following data element received in the request:
1909 DelegationType,
1910 MaintenanceService,
1911 DelegationScopeIdentification
1912 DelegationScopeDefinition
1913
1914 Certificate of the MTM for digital signature is verified by the TM1
1915 The TM2 sends a MaintenanceDelegationRequest to the MTM containing:
1916 The TM2 identification provided by the MTM.
1917 The POISubset contains the POI Identification assigned by the MTM (if known by TM2)
1918 DelegationType = Create
1919 MaintenanceService : contains “ApplicationParametersSubsetCreation”
1920 TMRemoteAccess = TM2 Host address
1921 DelegationScopeIdentification to identify the delegated maintenance function (e.g. ‘TM2 set of
1922 tables’)
1923 The identification of the parameters is included in the DelegationScopeDefinition. e.g. Table1,
1924 Table2, Table6)
1925
1926 Certificate of the TM2 for digital signature is verified by the MTM
1927 Then the MTM sends a MaintenanceDelegationResponse to the TM2 containing:
1928 Response = Approved
1929 A copy of the following data element received in the request:
1930 DelegationType,
1931 MaintenanceService,
1932 DelegationScopeIdentification
1933 DelegationScopeDefinition
1934
1935 Certificate of the MTM for digital signature is verified by the TM2
1936 In the following management plan for the POI, the MTM sends a ManagementPlanReplacement to the POI
1937 containing two Action using:
1938 Action 1
1939 Type = Download
1940 RemoteAccess = TM1 Host address where to send a StatusReport and get the management plan
1941 of the delegated TM1.
1942 ComponentType = ManagementPlan
1982 Receives the management plan of the TM1, which is managed independently from the MTM
1983 management plan.
1984 Exchanges the ApplicationParameters.
1985
1986 Exchange between POI and TM2
1987 The POI performs action2, sending a StatusReport to the RemoteAccess of TM2 using:
1988 The same POI identification as the MTM POIIdentification
1989 The identification of the TM2 in TerminalManagerIdentification
1990 The DelegationProof received in the delegation action2.
1991 A protection with a digital signature of the MTM (if present)
1992
1993
1994
1995 TM2 receives the StatusReport of the POI:
1996 Validates the signature of the message using the POI certificate
1997 May verify that StatusReport.POIIdentification is part of the POI subset sent in the
1998 MaintenanceDelegationRequest.
1999 Validates the delegation proof,
2000
2001 Then the POI:
2002 Receives the management plan of the TM2, which is managed independently from the MTM
2003 management plan.
2004 Exchanges the ApplicationParameters.
2005
2006
2007
Nominal
case before
delegation
Initiated
periodically
after
delegation
Manually
after
delegation
TM1 accepts
or not POI 1
2015
2016 Figure 13 Untargeted delegation
2017
2018 Assumptions:
2019 Security trailer is configured for all messages
2020 The TM is able to check the POI certificate
2021 DelegationScopeIdentification is defined and known by all the parties prior to any message
2022 exchange
2023
2024
2025 Workflow:
2026
2027 The TM sends a MaintenanceDelegationRequest to the MTM containing:
2028 The TM identification provided by the MTM.
2029 DelegationType = Create
2030 MaintenanceService : contains “ApplicationParametersSubsetCreation”
2031 TMRemoteAccess = TM Host address
2032 DelegationScopeIdentification to identify the delegated maintenance function (e.g. ‘TM set of tables’)
2033 PartialDelegation = True and POISubset is absent
2034
2035 Digital signature and Certificate of the TM for digital signature are verified by the MTM
2036
2037 Then the MTM sends a MaintenanceDelegationResponse to the TM containing:
2038 Response = Approved
2039 A copy of the following data element received in the request:
2040 DelegationType,
2041 MaintenanceService,
2042 DelegationScopeIdentification
2043 DelegationScopeDefinition
2044
2045 Digital signature and Certificate of the MTM for digital signature are verified by the TM
2046
2047 To be granted access to the delegated services, the POI sends a StatusReport to the MTM using:
2048 DataSetRequired.Identification.Name = DelegationScopeIdentification (entered by the operator)
2049 DataSetRequired.Identification.Type = ManagementPlan
2050
2051 According to its estate management policy, the MTM may either:
2052 Grant the access to the services with a following additional management plan for the POI, sending a
2053 ManagementPlanReplacement to the POI containing an Action using:
2054 Type = Download
2055 RemoteAccess = TM Host address where to send a StatusReport and get the management plan
2056 of the delegated TM.
2057 ComponentType = ManagementPlan
2058 TerminalManagerIdentification = TMIDentification provided by MTM
2059 A DelegationProof protected or not containing:
2060 The TM identification provided by the MTM.
2061 Delegation type: Create
2092
2098
2099 Figure 14 Distributed delegation
2100
2101 Assumptions:
2102 Security trailer is configured for any messages
2103 Both TM are able to check the relevant POI certificate
2104 The MTM defines two POISubstets and knows which POI belongs to each of the subset
2105
2106 Workflow:
2107
2108 The TM1 sends a MaintenanceDelegationRequest to the MTM containing:
2109 The TM1 identification provided by the MTM.
2110 The POISubset contains the POISubset Identifier assigned by the MTM and known by TM1
2111 DelegationType = Create
2150 In the following management plan for each of the POI belonging to POISubset1, the MTM sends a
2151 ManagementPlanReplacement to the POI containing one Action using:
2152
2153 Type = Download
2154 RemoteAccess = TM1 Host address where to send a StatusReport and get the management plan
2155 of the delegated TM1.
2156 ComponentType = ManagementPlan
2157 A DelegationProof protected or not containing:
2158 The TM1 identification provided by the MTM.
2159 Delegation type: Create
2160 POISubset Identification
2161 MaintenanceService = ApplicationParameters
2162 DelegationScopeDefinition
2163 A digital signature of the proof generated by the MTM (optional)
2164
2165 The POI receives the management plan with the delegation actions.
2166 The POI stores the delegated actions if the digital signature is valid.
2167
2168 In the following management plan for each of the POI belonging to POISubset2, the MTM sends a
2169 ManagementPlanReplacement to the POI containing one Action using:
2170
2171 Type = Download
2172 RemoteAccess = TM2 Host address where to send a StatusReport and get the management plan of
2173 the delegated TM2.
2174 ComponentType = ManagementPlan
2175 A DelegationProof protected or not containing:
2176 The TM2 identification provided by the MTM.
2177 Delegation type: Create
2178 POISubset Identification
2179 MaintenanceService = ApplicationParameters
2180 DelegationScopeDefinition
2181 A digital signature of the proof generated by the MTM (optional)
2182
2183 The POI receives the management plan with the delegation actions.
2184 The POI stores the delegated actions if the digital signature is valid.
2185
2186
2187
2188 Exchange between POI and TM1
2189 The POI performs action1, sending a StatusReport to the RemoteAccess of TM1 using:
2190
2191 The same POI identification as the MTM POIIdentification
2192 The identification of the TM1 in TerminalManagerIdentification
2193 The DelegationProof received in the delegation action1.
2194 A protection with a digital signature of the MTM (if present)
2195
2196 TM1 receives the StatusReport of the POI:
2197 Validates the signature of the message using the POI certificate
2198 May verify that StatusReport.POIIdentification is part of the POI subset sent in the
2199 MaintenanceDelegationRequest. or validates the POISubset contains in the delegation proof
2200 Validates the delegation proof,
2201
2202 Then the POI:
2203 Receives the management plan of the TM1, which is managed independently from the MTM
2204 management plan.
2205 Exchanges the ApplicationParameters.
2206
2207 Exchange between POI and TM2
2208 The POI performs action2, sending a StatusReport to the RemoteAccess of TM2 using:
2209 The same POI identification as the MTM POIIdentification
2210 The identification of the TM2 in TerminalManagerIdentification
2211 The DelegationProof received in the delegation action2.
2212 A protection with a digital signature of the MTM (if present)
2213
2214 TM2 receives the StatusReport of the POI:
2215 Validates the signature of the message using the POI certificate
2216 May verify that StatusReport.POIIdentification is part of the POI subset sent in the
2217 MaintenanceDelegationRequest.or validates the POISubset contains in the delegation proof
2218 Validates the delegation proof,
2219
2220 Then the POI:
2221 Receives the management plan of the TM2, which is managed independently from the MTM
2222 management plan.
2223 Exchanges the ApplicationParameters.
2224
2225
<Hdr>
2 ProtocolVersion [1..1 * The version compliant with this release of the
] MUG should be identified by "8.0".
<PrtcolVrsn>::Max6Text
2 ExchangeIdentification [0..1 * Identification of the exchange (request,
] response).
Must be present.
<XchgId>::Number
<CreDtTm>::ISODateTime
2 InitiatingParty [1..1 See StatusReport
]
<InitgPty>
3 Identification [1..1 <Id>::Max35Text
]
3 Issuer [0..1 <Issr>::PartyType6Code
]
3 Country [0..1 <Ctry>::Min2Max3AlphaText
]
3 ShortName [0..1 <ShrtNm>::Max35Text
]
2 RecipientParty [0..1 See StatusReport
]
<RcptPty>
3 Identification [1..1 <Id>::Max35Text
]
3 Issuer [0..1 <Issr>::PartyType6Code
]
3 Country [0..1 <Ctry>::Min2Max3AlphaText
]
3 ShortName [0..1 <ShrtNm>::Max35Text
]
3 RemoteAccess [0..1 * Access information to reach the target host.
]
Must be present in case of
MaintenanceDelegationRequest.
Based on type NetworkParameters.
<RmotAccs>
1 MaintenanceDelegationRequest [1..1 Information related to the request of
] maintenance delegations.
<MntncDlgtnReq>
2 TMIdentification [1..1 Identification of the Terminal Manager
] requesting the delegation.
See StatusReport
<TMId>
3 Identification [1..1 <Id>::Max35Text
]
3 Issuer [0..1 <Issr>::PartyType6Code
]
3 Country [0..1 <Ctry>::Min2Max3AlphaText
]
<MstrTMId>
3 Identification [1..1 <Id>::Max35Text
]
3 Issuer [0..1 <Issr>::PartyType6Code
]
3 Country [0..1 <Ctry>::Min2Max3AlphaText
]
3 ShortName [0..1 <ShrtNm>::Max35Text
]
2 RequestedDelegation [1..*] Information on the delegation of a
maintenance action or maintenance function.
<ReqdDlgtn>
3 DelegationType [1..1 Type of delegation action.
]
CREACreate.
UPDT Update.
DELT Delete.
<DlgtnTp>::TerminalManagementAction3Cod
e
3 MaintenanceService [1..*] C1 Maintenance service to be delegated.
AcquirerParameters: Configuration
parameters of the
payment acquirer
protocol.
ApplicationParameters: Configuration
parameters of an
application.
ApplicationParametersSubsetCreation:
Creation of a subset of
the configuration
parameters of an
application.
CertficateParamleters: Certificate
provided by a terminal
manager
KeyDownload: Download of
cryptographic keys with
the related information.
KeyManagement: Activate, deactivate or
revoke loaded
cryptographic keys.
MerchantParameters: hant
configuration
parameters for the point
of interaction (POI).
Reporting: Reporting on activity,
status and error of a
point of interaction.
SoftwareModule: Software module
update.
TerminalParameters: Point of interaction
parameters attached to
the terminal as serial
number or physical
capabilities.
TMSProtocolParameters Configuration
parameters for the TMS
protocol.
SaleToPOIProtocolParameters
Configuration
parameters for the
connection to the ECR
or UAT
If DelegationType equals DELETE the
MaintenanceService value is not relevant
<MntncSvc>::DataSetCategory13Code
3 PartialDelegation [0..1 Flag to indicate that the delegated
] maintenance must be performed on a subset
of the terminal estate.
Default False
If PartialDelegation is True and POISubset is
absent then the Delegation may apply to any
POI belonging to the MTM.
If PartialDelegation is False and POISubset is
absent then the Delegation applies to any
POI belonging to the MTM.
<PrtlDlgtn>::TrueFalseIndicator
3 POISubset [0..*] Subset of the terminal estate for the
delegation.
The subset may be expressed as a list of POI
or terminal estate subset identifier.
<POISubset>::Max35Text
3 DelegatedAction [0..1 Information for the MTM to build or include
] delegated actions in the management plan of
the POI.
<DlgtdActn>
4 PeriodicAction [0..1 Flag to indicate that the delegated actions
] have to be included in a periodic sequence of
actions.
Default False
<PrdcActn>::TrueFalseIndicator
4 TMRemoteAccess [0..1 Network address and parameters of the
] terminal manager host which will perform the
delegated actions.
Based on type NetworkParameters.
<TMRmotAccs>
4 TMSProtocol [0..1 TMS protocol to use to perform the
] maintenance action.
<TMSPrtcol>::Max35Text
4 [0..1 Version of the TMS protocol to use to perform
TMSProtocolVersion ] the maintenance action.
<TMSPrtcolVrsn>::Max35Text
4 [0..1 Data set on which the delegated action has to
DataSetIdentification ] be performed.
<DataSetId>
5 Name [0..1 <Nm>::Max256Text
]
5 Type [1..1 * Allowed values:
]
"AcquirerParameters":
AcquirerProtocolParameters,
HostCommunicationParameters,
ApplicationParameters and
MerchantParameters are present if they
need to be created or replaced.
"ApplicationParameters" if only
ApplicationParameters is present.
"MerchantParameters" if only
MerchantParameters is present.
"Parameters" for any combination of
parameters in the message.
"TerminalParameters" if only
TerminalParameters is present.
"SecurityParameters" if only
SecurityParameters is present.
<Tp>::DataSetCategory12Code
<ReTry>
5 Delay [1..1 <Dely>::Max9NumericText
]
5 [0..1 <MaxNb>::Number
MaximumNumber ]
4 [0..*] Additional information to include in the
AdditionalInformation maintenance action.
<AddtlInf>::Max3000Binary
4 Action [0..*] Sequence of action to include in the next
MTM management plan.
see ManagementPlanReplacement
<Actn>
5 Type [1..1 <Tp>::TerminalManagementAction4Code
]
5 [0..1 Based on type NetworkParameters.
RemoteAccess ]
<RmotAccs>
5 Key [0..*] Identification of Key to use to perform the
Action.
<Key>
6 [1..1 <KeyId>::Max140Text
KeyIdentification ]
6 [1..1 <KeyVrsn>::Max140Text
KeyVersion ]
6 [0..1 <SeqNb>::Number
SequenceNumber ]
6 [0..1 <DerivtnId>::Min5Max16Binary
DerivationIdentification ]
6 [0..1 <Tp>::CryptographicKeyType3Code
Type ]
6 [0..*] <Fctn>::KeyUsage1Code
Function
[0..1 Appli <TermnlMgrId>
TerminalManager- ]
Identification
6 [1..1 <Id>::Max35Text
Identification ]
6 [0..1 <Tp>::PartyType5Code
<Nm>::Max256Text
6 [1..1 C2 At least one DataSetIdentification must be
Type ] present with Name and Type equals to
ManagementPlan
<Tp>::DataSetCategory12Code
6 [0..1 <Vrsn>::Max256Text
Version ]
6 [0..1 Appli <CreDtTm>::ISODateTime
CreationDateTime ]
5 [0..*] <CmpntTp>::DataSetCategory12Code
ComponentType
5 [0..1 Identification of the delegation scope
DelegationScope- ] assigned by the MTM.
Identification
<DlgtnScpId>::Max35Text
5 [0..1 Definition of the delegation scope, for
DelegationScopeDefinition ] instance inside the payment application
parameters the range of application profiles,
the RID (Registered application provider
IDentification).
<DlgtnScpDef>::Max3000Binary
5 [0..1 <DlgtnProof>::Max5000Binary
DelegationProof ]
5 [0..1 <PrtctdDlgtnProof>
ProtectedDelegationProof ]
5 Trigger [1..1 <Trggr>::TerminalManagementActionTrigger
] 1Code
5 [0..*] <AddtlPrc>::TerminalManagementAdditional
AdditionalProcess Process1Code
<ReTry>
6 [1..1 <Dely>::Max9NumericText
Delay ]
6 [0..1 <MaxNb>::Number
MaximumNumber ]
5 [0..1 Should be present with the default value
TimeCondition ] expected by the TM
<TmCond>
6 [0..1 <WtgTm>::Max9NumericText
WaitingTime ]
6 [0..1 <StartTm>::ISODateTime
StartTime ]
6 [0..1 <EndTm>::ISODateTime
EndTime ]
6 [0..1 Should not be present
Period ]
<Prd>::Max9NumericText
6 [0..1 Should not be present
MaximumNumber ]
<MaxNb>::Number
5 [0..1 <TMChllng>::Max140Binary
TMChallenge ]
[0..*] <KeyNcphrmntCert>::Max10KBinary
KeyEncipherment-
Certificate
5 ErrorAction [0..*] <ErrActn>
6 [1..*] <ActnRslt>::TerminalManagementActionRes
ActionResult ult4Code
6 [1..1 <ActnToPrc>::TerminalManagementErrorActi
ActionToProcess ] on2Code
5 [0..*] <AddtlInf>::Max3000Binary
AdditionalInformation
5 [0..*] <MsgItm>
MessageItem
6 [1..1 <ItmId>::Max140Text
ItemIdentification ]
6 [1..1 <Cond>::MessageItemCondition1Code
Condition ]
6 [0..*] <Val>::Max140Text
Value
3 [0..1 Identification of the delegation scope
] assigned by the MTM.
DelegationScopeIdentification
<DlgtnScpDef>::Max3000Binary
3 Certificate [0..*] Certificate path of the terminal manager.
<Cert>::Max10KBinary
3 [0..*] Association of the TM identifier and the MTM
identifier of a POI.
POIIdentificationAssociation
<POIIdAssoctn>
4 [1..1 Identifier for the master terminal manager.
MasterTMIdentification ]
<MstrTMId>::Max35Text
4 TMIdentification [1..1 Identifier for the terminal manager requesting
] the delegation.
<TMId>::Max35Text
3 SymmetricKey [0..*] Identification of the key to manage or to
download.
see ManagementPlanReplacement
<SmmtrcKey>
4 KeyIdentification [1..1 <KeyId>::Max140Text
]
4 KeyVersion [1..1 <KeyVrsn>::Max140Text
]
4 SequenceNumber [0..1 <SeqNb>::Number
]
4 [0..1 <DerivtnId>::Min5Max16Binary
DerivationIdentification ]
4 Type [0..1 <Tp>::CryptographicKeyType3Code
]
4 Function [0..*] <Fctn>::KeyUsage1Code
3 ParameterDataSet [0..1 * Configuration parameters of the Terminal
] Manager to be sent by the MTM.
see AcceptorConfigurationUpdate/dataset
Same constraints than
AcceptorConfigurationUpdate applies here
also
<ParamDataSet>
<SctyTrlr>
2237
<Hdr>
2 ProtocolVersion [1..1 Copy * The version compliant with this release of the
] MUG should be identified by "8.0".
<PrtcolVrsn>::Max6Text
2 ExchangeIdentification [0..1 Copy * Must be present.
]
<XchgId>::Number
2 CreationDateTime [1..1 Date and time at which the message was
] sent.
<CreDtTm>::ISODateTime
2 InitiatingParty [1..1 Copy <InitgPty>
]
3 Identification [1..1 <Id>::Max35Text
]
3 Issuer [0..1 <Issr>::PartyType6Code
]
3 Country [0..1 <Ctry>::Min2Max3AlphaText
]
3 ShortName [0..1 <ShrtNm>::Max35Text
]
2 RecipientParty [0..1 <RcptPty>
]
3 Identification [1..1 Copy from the request
]
<Id>::Max35Text
3 Issuer [0..1 Copy from the request
]
<Issr>::PartyType6Code
3 Country [0..1 Copy from the request
]
<Ctry>::Min2Max3AlphaText
3 ShortName [0..1 <ShrtNm>::Max35Text
]
3 RemoteAccess [0..1 Access information to reach the target host.
]
Based on type NetworkParameters.
<RmotAccs>
1 MaintenanceDelegationResponse [1..1 Information related to the request of
] maintenance delegations.
<MntncDlgtnRspn>
2 TMIdentification [1..1 Copy Identification of the Terminal Manager
] requesting the delegation.
See StatusReport
<TMId>
3 Identification [1..1 <Id>::Max35Text
]
3 Issuer [0..1 <Issr>::PartyType6Code
]
3 Country [0..1 <Ctry>::Min2Max3AlphaText
]
3 ShortName [0..1 <ShrtNm>::Max35Text
]
2 MasterTMIdentification [0..1 Copy Identification of the Master Terminal Manager
] managing the terminal estate.
See StatusReport
<MstrTMId>
3 Identification [1..1 <Id>::Max35Text
]
3 Issuer [0..1 <Issr>::PartyType6Code
]
3 Country [0..1 <Ctry>::Min2Max3AlphaText
]
3 ShortName [0..1 <ShrtNm>::Max35Text
]
2 DelegationResponse [1..*] Information on the delegation of a
maintenance action or maintenance function.
<DlgtnRspn>
3 MaintenanceService [1..*] Copy Requested maintenance service to be
delegated.
<MntncSvc>::DataSetCategory11Code
3 Response [1..1 Response of the MTM to the delegation of the
] maintenance service.
Approved: Service has been successfuly
provided.
Declined: Service is declined.
<Rspn>::Response2Code
<DlgtnTp>::TerminalManagementAction3Cod
e
3 POISubset [0..*] <POISubset>::Max35Text
3 [0..1 Identification of the delegation scope
] assigned by the MTM.
DelegationScopeIdentification
<DlgtnScpId>::Max35Text
3 DelegationScopeDefinition [0..1 Definition of the delegation scope, for
] instance inside the payment application
parameters the range of application profiles,
the RID (registered application provider
identification).
<DlgtnScpDef>::Max3000Binary
3 DelegationProof [0..1 Proof of delegation to be verified by the POI,
] when performing the delegated actions.
<DlgtnProof>::Max5000Binary
3 ProtectedDelegationProof [0..1 Protected proof of delegation.
]
<PrtctdDlgtnProof>
3 [0..*] <POIIdAssoctn>
POIIdentificationAssociation
4 [1..1 Identifier for the master terminal manager.
MasterTMIdentification ]
<MstrTMId>::Max35Text
4 TMIdentification [1..1 Identifier for the terminal manager requesting
] the delegation.
<TMId>::Max35Text
1 SecurityTrailer [0..1 * Must be present
]
This element is computed as a response
message.
<SctyTrlr>
2249
2325
2326
2327 The CertificateManagementResponse message body contains:
2328 - A copy of POIIdentification.
2329 - TMIdentification.
2330 - Result containing the outcome of the performed service.
2331 - SecurityProfile
2332 - The renewed certificate in ClientCertificate.
2333 - Optionally, the sequence of X.509 certificates from the CA signing the client certificate to the root
2334 certificate in CertificatePath.
2335
2336 In order to manage errors occurring during the communication of the CertificateManagementResponse
2337 message, the TM must provide an approved response, even if the certificate has been already renewed.
2338
2339
2340
2361
2400
<Hdr>
2 ProtocolVersion [1..1 * The version compliant with this release of the
] MUG should be identified by "8.0".
<PrtcolVrsn>::Max6Text
2 ExchangeIdentification [0..1 * Identification of the exchange (request,
] response).
Must be present.
<XchgId>::Number
2 CreationDateTime [1..1 Date and time at which the message was
] sent.
<CreDtTm>::ISODateTime
2 InitiatingParty [1..1 See StatusReport
]
<InitgPty>
3 Identification [1..1 C6 <Id>::Max35Text
]
3 Issuer [0..1 <Issr>::PartyType6Code
]
3 Country [0..1 <Ctry>::Min2Max3AlphaText
]
3 ShortName [0..1 <ShrtNm>::Max35Text
]
2 RecipientParty [0..1 See StatusReport
]
<RcptPty>
3 Identification [1..1 <Id>::Max35Text
]
3 Issuer [0..1 <Issr>::PartyType6Code
]
3 Country [0..1 <Ctry>::Min2Max3AlphaText
]
3 ShortName [0..1 <ShrtNm>::Max35Text
]
3 RemoteAccess [0..1 Access information to reach the target host.
]
Based on type NetworkParameters.
<RmotAccs>
<CertMgmtReq>
2 POIIdentification [1..1 Identification of the terminal or system using
] the certificate management service.
<POIId>
3 Identification [1..1 C6 <Id>::Max35Text
]
3 Issuer [0..1 <Issr>::PartyType6Code
]
3 Country [0..1 <Ctry>::Min2Max3AlphaText
]
3 ShortName [0..1 <ShrtNm>::Max35Text
]
2 TMIdentification [0..1 Identification of the TM or the MTM providing
] the Certificate Authority service.
See StatusReport
<TMId>
3 Identification [1..1 <Id>::Max35Text
]
3 Issuer [0..1 <Issr>::PartyType6Code
]
3 Country [0..1 <Ctry>::Min2Max3AlphaText
]
3 ShortName [0..1 <ShrtNm>::Max35Text
]
2 CertificateService [1..1 Confi C1 Requested certificate management service.
] g
C2 WLSA AddWhiteList
C3 Add a POI in the white list of the
terminal manager.
CRTC CreateCertificate
Creation of an X.509 certificate
with the public key and the
information of the owner of the
asymmetric key provided by the
requestor.
WLSR RemoveWhiteList
Remove a POI from the white
list of the terminal manager.
CRTR RenewCerificate
Renewal of an X.509 certificate,
protected by the certificate to
renew.
CRTK RevokeCertificate
Revocation of an active X.509
certificate.
<CertSvc>::CardPaymentServiceType10Cod
e
2 SecurityDomain [0..1 Confi Identification of the client and server public
] g key infrastructures containing the certificate.
In addition, it may identify specific
requirements of the customer.
<SctyDomn>::Max70Text
2 BinaryCertificationRequest [0..1 Appli C1 PKCS#10 (Public Key Certificate Standard
] Confi 10) certification request coded in base64
C5
g ASN.1/DER (Abstract Syntax Notation 1,
C4 Distinguished Encoding Rules) or PEM
(Privacy Enhanced Message) format.
<BinryCertfctnReq>::Max20000Text
2 CertificationRequest [0..1 Appli C1 Certification request data structure with
] Confi PKCS#10 (Public Key Certificate Standard
C5
g 10) information for creation or renewal of an
C4 X.509 certificate.
<CertfctnReq>
3 [1..1 Information of the certificate to create.
]
CertificateRequestInformation <CertReqInf>
4 Version [0..1 Version of the certificate request information
] data structure.
<Vrsn>::Number
4 SubjectName [0..1 Distinguished name of the certificate subject,
] the entity whose public key is to be certified.
<SbjtNm>
5 [1..*] <RltvDstngshdNm>
RelativeDistinguishedName
6 [1..1 C2 <AttrTp>::AttributeType1Code
AttributeType ]
6 [1..1 <AttrVal>::Max140Text
AttributeValue ]
4 SubjectPublicKey- [1..1 Information about the public key being
Information ] certified.
<SbjtPblcKeyInf>
5 Algorithm [0..1 Asymmetric cryptographic algorithm.ERSA
] RSAEncryption
<Algo>::Algorithm7Code
<Attr>
5 [1..1 X509 attribute.
AttributeType ]
CHLG ChallengePassword
Password by which an entity
may request certificate
revocation
EMAL EmailAddress
Email address of the certificate
subject.
<AttrTp>::AttributeType2Code
5 [1..1 Value of the X500 attribute.
AttributeValue ]
<AttrVal>::Max140Text
3 KeyIdentification [0..1 Identification of the key.
]
<KeyId>::Max140Text
3 KeyVersion [0..1 Version of the key.
]
<KeyVrsn>::Max140Text
2 ClientCertificate [0..1 C3 Created certificate. The certificate is
] ASN.1/DER encoded, for renewal or
revocation of certificate.
<ClntCert>::Max10KBinary
2 WhiteListIdentification [0..1 Appli Identification of the white list element, for
] white list addition or removal.
<WhtListId>
3 ManufacturerIdentifier [1..1 Identifier of the terminal manufacturer.
]
<ManfctrIdr>::Max35Text
3 Model [1..1 Identifier of the terminal model.
]
<Mdl>::Max35Text
<SctyTrlr>
2403
2404
2405
2411
<Hdr>
2 ProtocolVersion [1..1 Copy * The version compliant with this release of the
] MUG should be identified by "8.0".
<PrtcolVrsn>::Max6Text
2 ExchangeIdentification [0..1 Copy * Identification of the exchange (request,
] response).
Must be present.
<XchgId>::Number
2 CreationDateTime [1..1 Date and time at which the message was
] sent.
<CreDtTm>::ISODateTime
<RmotAccs>
1 CertificateManagementResponse [1..1 Information related to response to the request
] of Certificate management.
<CertMgmtRspn>
2 POIIdentification [1..1 Identification of the terminal or system using
] the certificate management service.
<POIId>
3 Identification [1..1 <Id>::Max35Text
]
3 Issuer [0..1 <Issr>::PartyType6Code
]
3 Country [0..1 <Ctry>::Min2Max3AlphaText
]
3 ShortName [0..1 <ShrtNm>::Max35Text
]
<TMId>
3 Identification [1..1 <Id>::Max35Text
]
3 Issuer [0..1 <Issr>::PartyType6Code
]
3 Country [0..1 <Ctry>::Min2Max3AlphaText
]
3 ShortName [0..1 <ShrtNm>::Max35Text
]
2 CertificateService [1..1 Requested certificate management service.
]
<CertSvc>::CardPaymentServiceType10Cod
e
2 Result [1..1 Outcome of the certificate service processing.
]
<Rslt>
3 Response [1..1 C4 Response of the terminal manager.
]
<Rspn>::Response2Code
3 ResponseDetail [0..1 Detail of the response.
]
CRTU UnknownCertificate
The certificate is unknown.
SVSU UnsupportedService
Requested service not
supported.
<RspnDtl>::ResultDetail3Code
3 AdditionalResponse [0..1 Additional information about the result.
]
<AddtlRspn>::Max140Text
2 SecurityProfile [0..1 Identification of the security profile, for
] creation, renewal or revocation of certificate.
<SctyPrfl>::Max35Text
2 ClientCertificate [0..1 C4 Created certificate. The certificate is
] ASN.1/DER encoded, for renewal or
revocation of certificate.
<ClntCert>::Max3000Binary
<ClntCertPth>::Max10KBinary
2 ServerCertificatePath [0..*] C4 Certificate of the server certificate path, from
the CA (Certificate Authority) certificate, to
the root certificate, for renewal or revocation
of certificate.
<SvrCertPth>::Max10KBinary
1 SecurityTrailer [0..1 * Must be present if present in the request
]
This element is computed as a response
message.
<SctyTrlr>
2414
2415
2421
2461 The diagram in figure 15 shows the scenario described above. The card acceptor establishes a
2462 communication session manually.
2463 The POI sends the StatusReport to inform the MTM about the parameter versions already installed and
2464 receives in the response the management plan generated by the MTM. The new management plan contains
2465 a list of actions to be performed:
2466 1. The StatusReport as request for AcceptorConfigurationUpdate containing the new acquirer
2467 parameters.
2468 2. The StatusReport as request for a new management plan.
2469 If the trigger of the first action is reached the POI sends the StatusReport and receives the new acquirer
2470 parameters in the response. Afterwards the POI sends a StatusReport as request message with the result of
2471 the parameter update and gets back the new management plan in the response.
2472
2473
2474
POI MTM
POI initiates terminal 1
StatusReport
management
2
nReplacement
ManagementPla
StatusReport
3
4
ationUpdate
AcceptorConfigur
StatusReport
5
6
Replacement
ManagementPlan
2475
2476 Figure 15: TMS messages transferred as message exchanges
2477
2490
2523
2524 ManagementPlanReplacement (example 2).
2525
StartTime WaitingTime Period Type Identification.Name Identification.Type
T0 - Cycle1 Download - AcquirerParameters
D1 - Download - MerchantParameters
D2 - Download - ManagementPlan
2526
2527 1. The POI requests acquirer parameters when the StartTime T0 is reached.
2528 2. If the response message containing the acquirer parameters is processed the POI requests merchant
2529 parameters after a waiting time D1.
2530 3. If the response message containing the merchant parameters is processed by the POI the POI sends
2531 the result of the parameter update to the TMS after a waiting time D2 and receives a new management
2532 plan in the response message.
2533
2561 2. The upload of the StatusReport to the TM for sending the status of the new parameters.
POI MTM TM
POI initiates terminal 1
StatusReport
management session
2
nReplacement
ManagementPla
Loop (1,*) 1
rationUpdate
AcceptorConfigu
StatusReport
3
Loop (1,*) 1
te
AcceptorConfigurationUpda
StatusReport
6
2562
2563 Figure 16: TMS messages transferred as files
2586 7. If the StartTime or WaitingTime of the next action is shorter than in internally defined period for the
2587 session the FTP session is kept open for the next action.
2588 8. The timing conditions of the remaining actions are analysed. If a StartTime is expired or the delay to
2589 the previous action is reached the action must be started if allowed.
2590 9. If the TimeCondition of the action done contains a Period, the new StartTime is calculated (New
2591 StartTime = StartTime + Period) and stored in the management plan.
2592 10. If no other StartTime is reached the session must be closed.
2593
2627
2649
2650 ManagementPlanReplacement (example 4)
StartTime WaitingTime Period Type Identification.Name Identification.Type
T0 - Download PA345678.XML MerchantParameters
- D1 Download PA567890.XML AcquirerParameters
- D2 Upload - StatusReport
T1=T0+D4 - Cycle1 Upload - StatusReport
D3 - Download MP123456.XML ManagementPlan
2651
AcquirerParameters
2 version expired
AcceptorAuthorisationResponse
TMSTrigger sent
StatusReport
3
4
ent
ManagementPlanReplacem
Download of thenew 5
nUpdate
acquirer parameters is AcceptorConfiguratio
initiated byPOI using an
FTP session
StatusReport
( If defined 1
as final
2
action) ent
ManagementPlanReplacem
2663
2664 Figure 17: TMS messages transferred as both messages and file
2665
FTP Client
User-FTP Process
User
User Interface
FTP Server
Server-FTP Process
2705
2706 Figure 18: The FTP Model
2707
353 4 RFC 959, October 1985, by Jon Postel and Joyce Reynolds
2748 The command REIN reinitialises the FTP session without closing it. This command is used when a POI
2749 Server managing several POI, needs to exchange different types of files on the behalf of these POI
2750 Terminals.
2751
Acqu TMS
2758
2759 Figure 19: FTP Server Directory Structure for TMS
2760
2761
2775 The stream mode if the exchange of data does not require restart of the transfer after the beginning of
2776 the file.
2777 The block mode, if restart might be used if the file transfer does not terminate correctly.
2778 The POI must support the stream mode. The block mode may be used in addition for the file transfer.
2779 The command MODE TransferMode is sent by the Client to inform the stream or block mode to use for the
2780 next transfer.
2781 There is no recommendation for the position of the marker. The stream mode is the preferred solution.
2782
2806
2807 The following example illustrates the naming convention for a sequence of files if always the default name for
2808 the Management Plan is used:
2809
2810 Download first Management Plan MP000000 containing the Cyclic Call with two TMS actions:
2811 o Upload StatusReport and
2812 o Download Management Plan MP000000 (StartTime plus Period defined).
2813 For a foreseen download of a parameter set the TMS server generates a new Management Plan
2814 MP000000 containing three actions:
2815 1. Upload StatusReport
2816 2. Download Acceptor configuration PA000001
2817 3. Download new Management Plan MP00000 containing only the default actions Upload
2818 StatusReport and Download Management Plan MP000000
2819 For the next download of a new parameter set the TMS server generates a new Management Plan
2820 MP000000 containing three actions:
2821 1. Upload StatusReport
2822 2. Download parameter set PA000002
2823 3. Download new Management Plan MP00000 containing only the default actions Upload
2824 StatusReport and Download Management Plan MP000000
2844
2845